Secure Gateway Firewall



Similar documents
Verizon Voice over IP (VoIP)

Application Notes for Configuring a SonicWALL VPN with an Avaya IP Telephony Infrastructure - Issue 1.0

Enabling NAT and Routing in DGW v2.0 June 6, 2012

Firewall Defaults and Some Basic Rules

Verizon Managed SD WAN with Cisco IWAN. October 28, 2015

Software Defined Network

Virtual private network. Network security protocols VPN VPN. Instead of a dedicated data link Packets securely sent over a shared network Internet VPN

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

SIP Trunking with Microsoft Office Communication Server 2007 R2

Firewall Firewall August, 2003

Adit 3000 Series Part Guide

PowerLink Bandwidth Aggregation Redundant WAN Link and VPN Fail-Over Solutions

HughesNet Broadband VPN End-to-End Security Using the Cisco 87x

Firewall Defaults, Public Server Rule, and Secondary WAN IP Address

IVCi s IntelliNet SM Network

Enterprise Edge Communications Manager. Data Capabilities

Firewalls. Test your Firewall knowledge. Test your Firewall knowledge (cont) (March 4, 2015)

MITEL. NetSolutions. Flat Rate MPLS VPN

WAN Traffic Management with PowerLink Pro100

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1

Optimizing Networks for NASPI

PREPARED FOR ABC CORPORATION

Voice Over IP and Firewalls

Telecom Business Continuity Solutions FOR INTERNAL USE ONLY

Classic IOS Firewall using CBACs Cisco and/or its affiliates. All rights reserved. 1

BroadCloud PBX Customer Minimum Requirements

IP Router QUICK START GUIDE

Colt IP VPN Services Colt Technology Services Group Limited. All rights reserved.

About Firewall Protection

Figure 41-1 IP Filter Rules

Sprint Global MPLS VPN IP Whitepaper

Multi-Homing Dual WAN Firewall Router

MINIMUM NETWORK REQUIREMENTS 1. REQUIREMENTS SUMMARY... 1

Avaya IP Office. Converged Communications. Contact Centres Unified Communication Services

AT&T Managed IP Network Service (MIPNS) MPLS Private Network Transport Technical Configuration Guide Version 1.0

his document discusses implementation of dynamic mobile network routing (DMNR) in the EN-4000.

Edgewater Routers User Guide

Firewalls and VPNs. Principles of Information Security, 5th Edition 1

Application Description

Q&A Session Date: Wednesday, November 14, 2012

Radware s Multi-homing Solutions

EdgeMarc 4508T4/4508T4W Converged Networking Router

Cisco Advanced Services for Network Security

CSCE 465 Computer & Network Security

Edgewater Routers User Guide

INTRODUCTION TO FIREWALL SECURITY

Firewall VPN Router. Quick Installation Guide M73-APO09-380

Network Address Translation (NAT)

TSC (Total Solution Communications Ltd)

Jive Core: Platform, Infrastructure, and Installation

MULTI WAN TECHNICAL OVERVIEW

Key Considerations for MPLS IP-VPN Success

12. Firewalls Content

Integrated Communications Platform

Chapter 9 Monitoring System Performance

Post-Class Quiz: Telecommunication & Network Security Domain

Essential Curriculum Computer Networking 1. PC Systems Fundamentals 35 hours teaching time

Introduction of Intrusion Detection Systems

Network Security. Protective and Dependable. 52 Network Security. UTM Content Security Gateway CS-2000

Inbound Load Balance. User Manual

Source-Connect Network Configuration Last updated May 2009

How Proactive Business Continuity Can Protect and Grow Your Business. A CenturyLink White Paper

Stateful Inspection Technology

This chapter covers four comprehensive scenarios that draw on several design topics covered in this book:

Request for Proposals: Telecommunications and Local and Long Distance Services. Response to RFIs/Questions. Updated January 23, 2013

Total solution for your network security. Provide policy-based firewall on scheduled time. Prevent many known DoS and DDoS attack

Cisco Virtual Office Unified Contact Center Architecture

KERIO TECHNOLOGIES KERIO WINROUTE FIREWALL 6.4 REVIEWER S GUIDE. (Updated April 14, 2008)

CMPT 471 Networking II

Deploying ACLs to Manage Network Security

Chapter 1 Personal Computer Hardware hours

Data Sheet. V-Net Link 700 C Series Link Load Balancer. V-NetLink:Link Load Balancing Solution from VIAEDGE

IP-VPN Architecture and Implementation O. Satty Joshua 13 December Abstract

COURSE AGENDA. Lessons - CCNA. CCNA & CCNP - Online Course Agenda. Lesson 1: Internetworking. Lesson 2: Fundamentals of Networking

WiNG 5.X How To. Policy Based Routing Cache Redirection. Part No. TME Rev. A

Colt IP Access Colt Technology Services

MPLS/IP VPN Services Market Update, United States

HughesNet Broadband VPN End-to-End Security Enabled by the HN7700S-R

SIP Trunking Configuration with

WHITE PAPER. Mobility Services Platform (MSP) Using MSP in Wide Area Networks (Carriers)

What is VLAN Routing?

MPLS and IPSec A Misunderstood Relationship

CALNET 3 Category 7 Network Based Management Security. Table of Contents

Configure a Microsoft Windows Workstation Internal IP Stateful Firewall

Chapter 15. Firewalls, IDS and IPS

MANAGED SECURITY SERVICES

Security Considerations in IP Telephony Network Configuration

Recommended IP Telephony Architecture

Appendix A: Configuring Firewalls for a VPN Server Running Windows Server 2003

OpenScape Business V2

VegaStream Information Note Considerations for a VoIP installation

XO Wide Area Network ( WAN ) Services IP Virtual Private Network Services Ethernet VPLS Services

Quick Reference Guide: Server Hosting

APPENDIX 8 TO SCHEDULE 3.3

Campus Network Best Practices: Core and Edge Networks

SonicOS 5.9 One Touch Configuration Guide

Transcription:

Secure Gateway Firewall Secure Gateway Firewall provided by Verizon Business Services. All services may not be available in all areas. 2006 Verizon. All Rights Reserved.

PROPRIETARY STATEMENT This document and any attached materials are the sole property of Verizon and are not to be used by you other than to evaluate Verizon s service. This document and any attached materials are not to be disseminated, distributed, or otherwise conveyed throughout your organization to employees without a need for this information or to any third parties without the express written permission of Verizon. 2 The Verizon names and logos and all other names, logos, and slogans identifying Verizon s products and services are trademarks and service marks or registered trademarks and service marks of Verizon Trademark Services LLC or its affiliates in the United States and/or other countries. All other trademarks and service marks are the property of their respective owners.

Agenda The customer environment: Business objectives Business challenges Verizon solution: Secure Gateway Firewall The Verizon difference Summary and next steps 3

Section 1 The Customer Environment Secure Gateway Firewall provided by Verizon Business Services. All services may not be available in all areas. 2006 Verizon. All Rights Reserved.

Business Objectives Reduce operating expenses Increase operational efficiency Establish a flexible, scalable, and robust Internet service Implement an integrated private and public network Ensure network stability and predictability 5

Business Challenges Minimal technical expertise at remote locations Lack of standardized public network access Absent or minimal centralized protection against security threats 6

Section 2 Verizon Solution: Secure Gateway Firewall Secure Gateway Firewall provided by Verizon Business Services. All services may not be available in all areas. 2006 Verizon. All Rights Reserved.

Overcoming Challenges to Meet Objectives Challenges Minimal technical expertise at remote locations Lack of standardized network access Absent or minimal centralized protection against security threats Verizon Secure Gateway Firewall Objectives Help reduce operating expenses Increase operational efficiency Establish a flexible, scalable, and robust Internet service Implement an integrated private and public network Help ensure network stability and predictability 8

Secure Gateway Firewall NBFW PVC Protected Path Through Secure Gateway Trunks to UUNET Customer Network 1 Verizon Frame Relay/ ATM/Private IP NBFW Verizon IP Network Internet Secure Gateway HR Routers Customer Network 2 9 Customer Network 3

Secure Gateway Firewall U.S. Pricing One Component + Private Network Secure Gateway Port: NRC/MRC 64K to 3 MB standard (ICB above 3 MB) Dual Secure Gateway port/gateway provisioned (network service redundancy) for additional charge Private Network: NRC/MRC Standard rates for Private IP, Frame Relay, and ATM apply 10

Section 3 The Verizon Difference Secure Gateway Firewall provided by Verizon Business Services. All services may not be available in all areas. 2006 Verizon. All Rights Reserved.

Secure Gateway Firewall Overcoming Challenges to Meet Objectives Benefit Feature Challenge Addressed Objective Met Centralizes network- based firewall service Provides Verizon Frame Relay, Private IP, and ATM customers with the ability to securely access the public network (Internet) Lack of standardized network access Bring stability and predictability to the corporate network (WAN) environment Utilizes firewall located in the Verizon network Low-cost firewall option Absent or minimal centralized protection against security threats Absent or minimal centralized protection against security threats Verizon monitors, maintains, and manages the network-based firewall platform (not rule-sets) Verizon NOC provides 24x7 management, monitoring, and support for HWC and VPN Minimal technical expertise at remote locations Can help reduce expenses and ensure network stability and predictability Provides protection from many types of network threats Helps protect network from common attacks Absent or minimal centralized protection against security threats Can help ensure network stability and predictability Internet Access for Verizon Private Network customers Can help eliminate costly redundant circuits Lack of standardized network access Provides an integrated solution for private and public network connectivity, can help reduce expenses, and establish a flexible, scalable, and robust Internet service Network-based service No on-site technical resources needed Minimal technical expertise at remote locations Can help reduce expenses and increase operational efficiency 12

How Is Secure Gateway Firewall Different From CPE-Based Firewall Service? Cost CPE Management Reporting Intrusion detection ICMP attacks IP-spoofing attacks Fragmentation attacks UDP flooding TCP-based attacks Verizon Secure Gateway Firewall Secure Gateway port (cost determined by bandwidth) None Required Centralized No No Yes Yes Yes Yes Yes Verizon CPE-Based Firewall Requires individual firewalls at each remote location or centralized firewall Firewall at central site or local firewalls at remote sites Centralized or distributed Varies Varies Yes Yes Yes Yes Yes 13

Secure Gateway Firewall Case Study: Seafood Processor/Distributor Customer requirements: Network standardization Prioritize traffic for a future implementation of VoIP Obtain secure centralized Internet access to a specified subset of their end-users Eliminate circuit and service redundancy Verizon solution: Private IP network Secure Gateway Firewall 14

Summary: Secure Gateway Firewall Solves Business Challenges Secure access to the Internet Centralized protection against security threats Reduced network costs

Section 4 The Verizon Difference Secure Gateway Firewall provided by Verizon Business Services. All services may not be available in all areas. 2006 Verizon. All Rights Reserved.

Section 5 Appendix Pricing Firewall Configurations Details on Firewall Rules Details on NAT Functionality With SIG Details on DDoS Policy Secure Gateway Firewall provided by Verizon Business Services. All services may not be available in all areas. 2006 Verizon. All Rights Reserved.

Secure Gateway Firewall Secure Gateway Port Pricing U.S. Secure Gateway Port Pricing (MBS II, MBS I, and Pre-MBS) Port Speed (KB) 64 128 256 384 512 768 1,024 1,536 2,048 3,072 Secure Gateway port NRC MRC $100.00 $150.00 $100.00 $170.00 $100.00 $250.00 $100.00 $310.00 $100.00 $360.00 $100.00 $420.00 $100.00 $450.00 $200.00 $650.00 NA NA $200.00 $1,300.00 Note: 4680 Kbps to 15,360 Kbps Secure Gateway ports are available after obtaining an approval from Capacity Planning. Minimum one-year term required. Early termination fee applies. Please see your Verizon account manager for complete details. Pricing was effective July 2005 and subject to change without notice. Excludes taxes and surcharges. 18

Secure Gateway Firewall Standard Configuration NBFW PVC Trunks to UUNET Verizon Frame Relay/ ATM/Private IP NBFW Verizon IP Network Internet Customer Network Frame Relay or ATM Link HR Routers Customer s PVC to Private IP Trunks to UUNET Verizon Frame Relay/ ATM/Private IP NBFW Verizon IP Network Internet Customer Network Link to Private IP HR Routers 19

Secure Gateway Firewall Redundancy Configuration Verizon Frame Relay/ ATM/Private IP NBFW 1 Verizon IP Network Internet NBFW 2 Customer Network Verizon Frame Relay/ ATM/Private IP NBFW 1 Verizon IP Network Internet NBFW 2 Customer Network 20

Secure Gateway Firewall Redundancy Configuration (cont d) Trunks to UUNET Verizon Frame Relay/ ATM/Private IP NBFW 1 Verizon IP Network Internet NBFW 2 Customer Network Frame Relay or ATM Link HR Routers Trunks to UUNET Verizon Frame Relay/ ATM/Private IP NBFW 1 Verizon IP Network Internet Customer Network NBFW 2 HR Routers 21

22 Details on Basic Stateful Firewall Rules

23 Details on Anti-Spoofing Rules

24 Details on Ingress Anti-Spoofing Rules

Details on Network Address Translation (NAT) Services 25

Details on NAT/PAT Translations and Mapping Features NBFW/NAT PC 10.10.10.1.80 10.10.10.1.8 translated to 66.200.243.145.105 WWW PC 10.10.10.2.8080 PC with any 10.10.10.x.23 SMTP Server 10.10.10.43.25 or Public Address Assigned to Customer Previously Verizon Frame Relay/ ATM Private Addresses 10.10.10.2.8080 translated to 66.200.243.145.9189 10.10.10.x.23 translated to 66.200.243.145.245 10.10.10.x.2343.25 mapped to 66.200.243.146.25 66.200.243.146 66.200.243.146 Internet FTP SMTP Servers 26

27 Details on DDoS Policy

For More Information To speak to a Verizon Representative about whether Secure Gateway - Firewall is right for your business: Fill out a consultation form at: http://mediumbusiness.verizon.com/products/access/secure_gateway.aspx Or Call 1-800-201-1452, press 2 28

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information