• Breaking News

    Network administration principles

    April 14, 2018 0


    1)Rule base Management :applies to firewalls ,the set of rules to dictate what traffic should be allowed to pass on a network and what traffic should be denied on a network.Network administrator configure the firewall to follow the firewall rules policy
    2)Secure Router management:maintain integrity of routing tables.Network administrator ensures that routers are secured before we deploy them.
    3)Access control lists:determine the capability of users when it gain access to the network
    4)Port security:Network administrator lock down down in such a way that he restrict physical access to the ports that are not in use because if a malicious person discover it he will use it to gain access to the network
    Flood guard
    Malicious person slow down the servers by   requesting  beyond the limit of the server.
    1)Ping flood:Ping is for testing connectivity.Malicious person would flood your server with ping in such a way that the server becomes overwhelmed.
    2)Syn flood:Malicious person would craft their syn packet in such a way that machine becomes overwhelmed.
    Now if Network administrator activate Flood guard in a network they will block the traffic further so the servers are not overwhelmed
    Loop protection
    Spanning tree protocol:When we set up our router in network.There is an algorithm with in them in such away that accidently had to create a loop,we don’t want loops on our network.If accidently we create a loop then the spanning tree protocol could be implemented to prevent looping.Loop may be is a result of configuration error on our network.
    Implicit deny 
    Certain type of traffic should be allowed to pass through the firewall.
    Log analysis:Stored on hard disk to view record and secure network
    SIEM(security information and event management):tools to capture precised logs that are important.
    Unified thread management
    Unified thread management within 1 device :Devices such as firewalls ,IDS(intrusion detection system) etc are combined into a single platform to protect network.
    1)Single point failure:Network administrator protect single point failure(mean if 1 device fail there shouldn’t be whole network crack down.
    Tags:
    Author Image

    About techo help

    No comments

    Subscribe to: Post Comments ( Atom )

    About me

    I am a university student doing bachelors in computer science.I love to discover new interesting facts about technology. I believe in creativity and believe that passion and skills together lead to success. Everybody is genius you just have to believe in yourself and discover your passion. I believe in Albert Einstein words : "Everyone is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid." I think that our educational system judge us by criteria of how much one can memorize things better it's rat race where no one is concerned about improving knowledge but only to get 1sr position and become the best one to memorize things. We have to discover technology and discover our strength that what we can contribute.