• Breaking News

    Network administration principles



    1)Rule base Management :applies to firewalls ,the set of rules to dictate what traffic should be allowed to pass on a network and what traffic should be denied on a network.Network administrator configure the firewall to follow the firewall rules policy
    2)Secure Router management:maintain integrity of routing tables.Network administrator ensures that routers are secured before we deploy them.
    3)Access control lists:determine the capability of users when it gain access to the network
    4)Port security:Network administrator lock down down in such a way that he restrict physical access to the ports that are not in use because if a malicious person discover it he will use it to gain access to the network
    Flood guard
    Malicious person slow down the servers by   requesting  beyond the limit of the server.
    1)Ping flood:Ping is for testing connectivity.Malicious person would flood your server with ping in such a way that the server becomes overwhelmed.
    2)Syn flood:Malicious person would craft their syn packet in such a way that machine becomes overwhelmed.
    Now if Network administrator activate Flood guard in a network they will block the traffic further so the servers are not overwhelmed
    Loop protection
    Spanning tree protocol:When we set up our router in network.There is an algorithm with in them in such away that accidently had to create a loop,we don’t want loops on our network.If accidently we create a loop then the spanning tree protocol could be implemented to prevent looping.Loop may be is a result of configuration error on our network.
    Implicit deny 
    Certain type of traffic should be allowed to pass through the firewall.
    Log analysis:Stored on hard disk to view record and secure network
    SIEM(security information and event management):tools to capture precised logs that are important.
    Unified thread management
    Unified thread management within 1 device :Devices such as firewalls ,IDS(intrusion detection system) etc are combined into a single platform to protect network.
    1)Single point failure:Network administrator protect single point failure(mean if 1 device fail there shouldn’t be whole network crack down.

    No comments