With the advent of cheap 3G and 4G service providers, use of internet has become extremely common in India. So much so, that the number of people using internet far exceeds the number of people who actually know `internet` even means.
And since we at whippyminds are committed to bring all the diverse information/data/knowledge across the globe on this single platform in an easy to understand form, I thought of writing this small article explaining some of the `common-internet` jargans most of say or hear in our regular life.
● Proxy Server - It is a server which acts as an intermediate point between the client requests inside our network and the external servers(e.g. Internet). Proxies keep the internal network structure a secret by using Network Address Translations (NAT) thus adding a layer of protection to our environment.
● DMZ Zone - It stands for demilitarized zone which only exposes some nodes called the external-facing nodes which are allowed to interact with the rest of the world (Internet). This thus protects organization’s Local Area Network which is behind Firewall.
● Firewall - It is a security system that monitors and controls the incoming and outgoing packets based on security rules. Leveraging firewalls help defend the our underlying environment by filtering out movement of malicious external traffic from in and out of our network.
● Hardened Linux - The border firewall systems have been updated with Hardened Linux OS.
The outbound requests permissions have only been granted to TCP and UDP ports.
The inbound requests permissions have only been granted to TCP80 to webserver, TCP443 to Web Application on Linux, TCP443 to Exchange OWA, TCP25 to Exchange 2013 server. This design thus guards the network against incoming and outgoing traffics
● Domain Controllers - Domain Controller is a server on the Microsoft Windows which serves authentication requests, stores user accounts and adds a layer of security policy for our Windows Domain. It then grants users access to various computer resources with the use of a single username and password combination. We have a Primary as well as Backup Domain Controller implemented in our environment.
Primary Domain Controller (PDC) maintains a master copy of database to validates users. A Backup Domain Controller (BDC) also contains a copy of the directory database and is made PDC if PDC fails. This multiple level storage adds another level of security and robustness to out Network.
● Network Access Control - This is a security system which can deny network access to noncompliant devices or give the device limited access(based on certain policies) as to what resources they can access on the network. Thus a successful implementation of the Network Access Control in our environment will allow the Network Administrators to enforce their policies, Authentication and Accounting of network connections, and will also prevent End-Stations that lack antivirus to Access the network.
● Spam Server - It is a mail server that increases an email’s spam detection efficiency. The successful implementation of the spam server will allow filtering of the incoming mail at server level rather than client level thus adding another layer of protection in our network.
● Anti-Virus System - Anti-Virus Software allows the prevention, detection and removal of malwares, Malicious Browser Objects like browser hijackers, keyloggers, trojan, worms, infected URLs, spams etc. After successful adding the Anti-Virus System in our defence, our environment will be protected against all the above mentioned threats and many more (depending upon the quality of the anti-virus).
If you like our posts, kindly subscribe to whippyminds.com and encourage us to research and write more and allow us to keep you notified about our latest blogs.
If you want us to write about any specific topic then please do mention it in the comments or drop us a mail at firstname.lastname@example.org We will reply to all your suggestions and most certainly come up with a blog on it.
-by Deep Shekhar