SlideShare a Scribd company logo

Securing the local area network

Download as PPTX, PDF
ح
حماده العلوي

This document discusses securing local area networks (LANs). It emphasizes that securing the internal LAN is as important as securing edge devices with external connections. Both endpoint devices like laptops and desktops, as well as non-endpoint devices like switches and wireless access points, need protection. Network admission control (NAC) provides authentication, authorization, posture assessment, and quarantine of non-compliant systems to maintain network stability. The document also covers storage area networks (SANs), how they enable shared storage resources, and different SAN transport technologies like Fiber Channel, Fiber Channel over IP, iSCSI, and Gigabit Ethernet.

Engineering
1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
SECURING THE LOCAL AREA NETWORK
Which should be protected?  Securing the edge device because of itsWAN connection?  Securing the internal LAN?  Securing the internal LAN is just as important as securing the perimeter of a network
Securing Endpoint Devices  A LAN connects many network endpoint devices that act as a network clients.  Endpoint devices include:  Laptops  Desktops  IP phones
Securing Non-Endpoint Devices  A LAN also requires many intermediary devices to interconnect endpoint devices.  Non-endpoint LAN devices:  Switches  Wireless devices  IP telephony devices
Network Admission Control
NAC  NAC helps maintain network stability by providing two important features:  Authentication and authorization  Posture assessment  Quarantining of noncompliant systems  Remediation of noncompliant systems  NAC can be implemented in two ways:  NAC Framework  Cisco NAC Appliance
San Networks
STORAGE AREA NETWORKS (SANS) Network and server downtime costs companies large sums of money in business and productivity losses. At the same time, the amount of information to be managed and stored is increasing dramatically every year. A SAN is a specialized network that enables fast, reliable access among servers and external storage resources. A storage device is not the exclusive property of any one server. They are shared among all networked servers as peer resources. A SAN does not need to be a physically separate network. It can be a dedicated subnet that carries only business- critical I/O traffic such as reading / writing a file from / to a disk, between servers and storage devices.
Storage Area Networks (SANs)  Cisco SAN solutions provide a preferred means of accessing, managing, and protecting information resources across a variety of SAN transport technologies.  For example:  Fiber Channel  Fiber Channel over IP (FCIP)  Internet Small Computer Systems Interface (iSCSI)  Gigabit Ethernet  Optical network
SAN Transport Technologies  Fiber Channel:  The primary SAN transport for host-to-SAN connectivity.  Fiber Channel networks provide a serial transport for the SCSI protocol.  Uses a world wide name (WWN) to uniquely identify each element.  iSCSI:  Maps SCSI overTCP/IP and is typically used in the LAN.  Leverages existing IP networks to build and extend SANs by usingTCP/IP to transport SCSI commands, data, and status between hosts or initiators and storage devices or targets, such as storage subsystems and tape devices.  Uses a logical unit number (LUN) which is a 64-bit address as a way to differentiate individual disk drives within a common SCSI target device such as a disk array.  FCIP:  Popular SAN-to-SAN connectivity model that is used over the WAN or MAN.  SAN designers can use the open-standard FCIP protocol to break the distance barrier of current Fiber Channel solutions and enable interconnection of SAN islands over extended distances. 

More Related Content

PPT
SAN Review
Information Technology
 
PPTX
Storage area network (san)
Satwik Kumar Shiri
 
PPTX
Typical elements in a LAN Palacios
MikelPalacios
 
PPT
Storage Area Network (San)
sankcomp
 
PPTX
Network Attached Storage (NAS)
sandeepgodfather
 
PDF
SDN 101
Hazzim Anaya
 
PPTX
Vision
Gaurav Rai
 
DOCX
Nash-Bio
Craig Nash
 
SAN Review
Information Technology
 
Storage area network (san)
Satwik Kumar Shiri
 
Typical elements in a LAN Palacios
MikelPalacios
 
Storage Area Network (San)
sankcomp
 
Network Attached Storage (NAS)
sandeepgodfather
 
SDN 101
Hazzim Anaya
 
Vision
Gaurav Rai
 
Nash-Bio
Craig Nash
 

Viewers also liked (11)

PPTX
Security policy
Abdullah Bakhashwain
 
PPTX
Secure your LAN
Cadariu Cristian
 
PDF
3852 wlan revised
Steven Habuda
 
PPT
Security threats in the LAN
Agora Group
 
PPT
LAN Security
Syed Ubaid Ali Jafri
 
PPT
Lecture 11 wifi security
rajakhurram
 
PPTX
Wlan security
Upasona Roy
 
PPTX
Securing the LAN Best practices to secure the wired access network
Aruba, a Hewlett Packard Enterprise company
 
PPT
Open Source vs. Enterprise Solutions
RMMcPherson
 
PPT
Wireless security presentation
Muhammad Zia
 
PPT
Wireless LAN security
Rajan Kumar
 
Security policy
Abdullah Bakhashwain
 
Secure your LAN
Cadariu Cristian
 
3852 wlan revised
Steven Habuda
 
Security threats in the LAN
Agora Group
 
LAN Security
Syed Ubaid Ali Jafri
 
Lecture 11 wifi security
rajakhurram
 
Wlan security
Upasona Roy
 
Securing the LAN Best practices to secure the wired access network
Aruba, a Hewlett Packard Enterprise company
 
Open Source vs. Enterprise Solutions
RMMcPherson
 
Wireless security presentation
Muhammad Zia
 
Wireless LAN security
Rajan Kumar
 
Ad

Similar to Securing the local area network (20)

PPT
T1-9-2.ppt
WilsonOliveira569889
 
PDF
Storage Area Network PPT.pdf
bojik74454
 
PPTX
Network types & its topology
DEVI NATARAJAN
 
PPTX
Storage Area Network PPT.pptx
StudyvAbhi
 
PDF
Chapter 6-Securing the Local Area Network.pdf
OhmRon
 
PPT
San
Vishal Patil
 
PPT
San
Arkshita sahoo
 
PPTX
Storage Area Networks, Networks, Networking, Computer Networks
Seraphic Nazir
 
PPT
Chapter 6 overview
ali raza
 
PPTX
PACE-IT: Storage Area Networks - N10 006
Pace IT at Edmonds Community College
 
PPT
Storage area network
Neha Agarwal
 
PDF
Instant Access to Fibre Channel for SANs 1st Edition Alan Frederic Benner ebo...
enimilyoali
 
PPTX
Networking
AdityaKumar1548
 
PPTX
Networking.pptx
YashShinde96
 
PPTX
Networking.pptx
FarhanAli951243
 
PPTX
Introduction to Network best concept about Net
AssadLeo1
 
PPT
CN L1 — копия.ppt
AssemNazirova2
 
PPTX
Networking ke notes ke types all netwoking types
yogeshguptamca
 
PPT
Storage Primer
sriramr
 
PPTX
Information storage management_Module 3_FC SAN AND FCoE .pptx
shruthis866876
 
T1-9-2.ppt
WilsonOliveira569889
 
Storage Area Network PPT.pdf
bojik74454
 
Network types & its topology
DEVI NATARAJAN
 
Storage Area Network PPT.pptx
StudyvAbhi
 
Chapter 6-Securing the Local Area Network.pdf
OhmRon
 
San
Vishal Patil
 
San
Arkshita sahoo
 
Storage Area Networks, Networks, Networking, Computer Networks
Seraphic Nazir
 
Chapter 6 overview
ali raza
 
PACE-IT: Storage Area Networks - N10 006
Pace IT at Edmonds Community College
 
Storage area network
Neha Agarwal
 
Instant Access to Fibre Channel for SANs 1st Edition Alan Frederic Benner ebo...
enimilyoali
 
Networking
AdityaKumar1548
 
Networking.pptx
YashShinde96
 
Networking.pptx
FarhanAli951243
 
Introduction to Network best concept about Net
AssadLeo1
 
CN L1 — копия.ppt
AssemNazirova2
 
Networking ke notes ke types all netwoking types
yogeshguptamca
 
Storage Primer
sriramr
 
Information storage management_Module 3_FC SAN AND FCoE .pptx
shruthis866876
 
Ad

Recently uploaded (20)

PDF
Unit I ESSENTIAL OF DIGITAL MARKETING.pdf
Nitin Shelake
 
PDF
Mohammad Mahdi Farshadian CV - Prospective PhD Student 2026
Educational Group Mohammad Farshadian
 
PPTX
Safety Seminar civil to be ensured for safe working.
DILJEETKUMAR8
 
PDF
TFEC-4-2020-Design-Guide-for-Timber-Roof-Trusses.pdf
AinieButt1
 
PPTX
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
PPTX
Internet of Things (IOT) - A guide to understanding
Davies Chacko
 
PPTX
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
PPTX
Construction Project Organization Group 2.pptx
vj5agdales
 
DOCX
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
PDF
Embodied AI: Ushering in the Next Era of Intelligent Systems
Yu Huang
 
PDF
Automation-in-Manufacturing-Chapter-Introduction.pdf
pcmth867
 
PPTX
MET 305 2019 SCHEME MODULE 2 COMPLETE.pptx
VinayB68
 
PDF
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
PPTX
Sustainable Sites - Green Building Construction
mhdumerali
 
PDF
Model Code of Practice - Construction Work - 21102022 .pdf
AinieButt1
 
PPTX
FINAL REVIEW FOR COPD DIANOSIS FOR PULMONARY DISEASE.pptx
rubeshbme
 
PDF
737-MAX_SRG.pdf student reference guides
ssusere2119a1
 
PDF
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
PPTX
UNIT-1 - COAL BASED THERMAL POWER PLANTS
Chandra Kumar S
 
PPTX
Engineering Ethics, Safety and Environment [Autosaved] (1).pptx
MehrabTaseenTalukder
 
Unit I ESSENTIAL OF DIGITAL MARKETING.pdf
Nitin Shelake
 
Mohammad Mahdi Farshadian CV - Prospective PhD Student 2026
Educational Group Mohammad Farshadian
 
Safety Seminar civil to be ensured for safe working.
DILJEETKUMAR8
 
TFEC-4-2020-Design-Guide-for-Timber-Roof-Trusses.pdf
AinieButt1
 
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
Internet of Things (IOT) - A guide to understanding
Davies Chacko
 
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
Construction Project Organization Group 2.pptx
vj5agdales
 
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
Embodied AI: Ushering in the Next Era of Intelligent Systems
Yu Huang
 
Automation-in-Manufacturing-Chapter-Introduction.pdf
pcmth867
 
MET 305 2019 SCHEME MODULE 2 COMPLETE.pptx
VinayB68
 
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
Sustainable Sites - Green Building Construction
mhdumerali
 
Model Code of Practice - Construction Work - 21102022 .pdf
AinieButt1
 
FINAL REVIEW FOR COPD DIANOSIS FOR PULMONARY DISEASE.pptx
rubeshbme
 
737-MAX_SRG.pdf student reference guides
ssusere2119a1
 
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
UNIT-1 - COAL BASED THERMAL POWER PLANTS
Chandra Kumar S
 
Engineering Ethics, Safety and Environment [Autosaved] (1).pptx
MehrabTaseenTalukder
 

Securing the local area network

  • 1. SECURING THE LOCAL AREA NETWORK
  • 2. Which should be protected?  Securing the edge device because of itsWAN connection?  Securing the internal LAN?  Securing the internal LAN is just as important as securing the perimeter of a network
  • 3. Securing Endpoint Devices  A LAN connects many network endpoint devices that act as a network clients.  Endpoint devices include:  Laptops  Desktops  IP phones
  • 4. Securing Non-Endpoint Devices  A LAN also requires many intermediary devices to interconnect endpoint devices.  Non-endpoint LAN devices:  Switches  Wireless devices  IP telephony devices
  • 6. NAC  NAC helps maintain network stability by providing two important features:  Authentication and authorization  Posture assessment  Quarantining of noncompliant systems  Remediation of noncompliant systems  NAC can be implemented in two ways:  NAC Framework  Cisco NAC Appliance
  • 8. STORAGE AREA NETWORKS (SANS) Network and server downtime costs companies large sums of money in business and productivity losses. At the same time, the amount of information to be managed and stored is increasing dramatically every year. A SAN is a specialized network that enables fast, reliable access among servers and external storage resources. A storage device is not the exclusive property of any one server. They are shared among all networked servers as peer resources. A SAN does not need to be a physically separate network. It can be a dedicated subnet that carries only business- critical I/O traffic such as reading / writing a file from / to a disk, between servers and storage devices.
  • 9. Storage Area Networks (SANs)  Cisco SAN solutions provide a preferred means of accessing, managing, and protecting information resources across a variety of SAN transport technologies.  For example:  Fiber Channel  Fiber Channel over IP (FCIP)  Internet Small Computer Systems Interface (iSCSI)  Gigabit Ethernet  Optical network
  • 10. SAN Transport Technologies  Fiber Channel:  The primary SAN transport for host-to-SAN connectivity.  Fiber Channel networks provide a serial transport for the SCSI protocol.  Uses a world wide name (WWN) to uniquely identify each element.  iSCSI:  Maps SCSI overTCP/IP and is typically used in the LAN.  Leverages existing IP networks to build and extend SANs by usingTCP/IP to transport SCSI commands, data, and status between hosts or initiators and storage devices or targets, such as storage subsystems and tape devices.  Uses a logical unit number (LUN) which is a 64-bit address as a way to differentiate individual disk drives within a common SCSI target device such as a disk array.  FCIP:  Popular SAN-to-SAN connectivity model that is used over the WAN or MAN.  SAN designers can use the open-standard FCIP protocol to break the distance barrier of current Fiber Channel solutions and enable interconnection of SAN islands over extended distances. 