Solved

jupiter netscreen 25 port scanning t can protection

Posted on 2013-05-31
2
662 Views
Last Modified: 2013-06-08
i have a netscreen ns 25,
in is screening => screen link
there is many categories like flood defence, MS-Windows Defense, Denial of Service Defense, Protocol Anomaly Reports -- IP Option Anomalies, Protocol Anomaly Reports -- TCP/IP Anomalies, Scan/Spoof/Sweep Defense

to protect from hack, should in setup in untrust zone or trust zone?

there is also select to setup thoese in v1-trust and v1-untrust zone, to protect from port scanning, use which zone?

expert please advice.
0
Comment
Question by:john80988
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 21

Expert Comment

by:Rick_O_Shay
ID: 39210458
Screens normally go in the untrust zone. You can see in the counters to see what ones are hitting.
0
 
LVL 70

Accepted Solution

by:
Qlemo earned 500 total points
ID: 39213091
Those v1* zones cannot be used if your NS is in routing (versus bridging) mode. In bridging mode, the NS works like a switch.
With routing mode, you have a WAN and at least one LAN side. WAN is in the Untrust zone, and that is where the defense should start. So the prior answer is correct - you use Screening in Untrust most of the time.
0

Featured Post

Turn Insights Into Action

You’ve already invested in ITSM tools, chat applications, automation utilities, and more. Fortify these solutions with intelligent communications so you can drive business processes forward.

With xMatters, you'll never miss a beat.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question