Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Puneet Mehta, SDG

What are the key security risks and considerations to adopt firewall/VPN technology?

Some key security risks and standards that should be considered while adopting a firewall/VPN are:

Single point of failure
Loose security policies
support protection
Limitation of technology
False sense of security
Weak encryption
Latency risks

Risks are threats to your objectives. A proper risk analysis should be done before making any technology decision. A risk analysis should address:

What is at risk?
What is its value?
What are the threats?
What is the probability of occurrence?

Some firewall/VPN standards to consider:

Open architecture
Packet filteration
Default to denial
Auditing capabilities
Access control
Logging capabilities
Intrusion detection
Extended user authentication
Secured subnets
Strong encryption
Network management systems
Secure back-up
Stateful inspection
Real-time traffic monitoring & alerting system
Device management
Secure tunneling

This was last published in August 2005

Dig Deeper on Network Security Best Practices and Products

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

Find out if there's a difference between a virtual private network (VPN) concentrator and a network access server (NAS) in this explanation from our ... Continue Reading

What keeps unauthorized users from accessing my IP address/Internet?

Our network security expert explains how to keep unauthorized users from accessing your router's IP address for Internet access in this advice ... Continue Reading

Controlling network access by MAC address restriction on wired networks

If you've used MAC address restriction to control your network access on your wireless router, can you extend this to your wired network? Our ... Continue Reading

SearchUnifiedCommunications

AR and VR in video conferencing offer post-pandemic benefits

In a post-COVID-19 world, understanding the differences between AR and VR video conferencing will help companies determine which ...

Big Tech's uneasy balance of capitalism, censorship

Big tech companies' enforcement of acceptable use policies following Capitol riots is questioned, as some say First Amendment ...

Microsoft slow to fulfill request for more Teams channel control

Microsoft won't prioritize a feature that would let Teams users move channels between groups, despite tens of thousands of ...

SearchMobileComputing

Samsung lowers the price of Galaxy phones with S21 line

Samsung has dropped the starting price of its latest Galaxy phones by 20%. The S21 line will start at $800 when it goes on sale ...

Qualcomm to buy Nuvia for $1.4 billion

Qualcomm's $1.4 billion acquisition of Nuvia would bring a top-notch silicon design team to the mobile chipmaker. Qualcomm did ...

High phone prices driving consumers to the used phone market

High-priced phones from Apple and Samsung have energized the used phone market, experts said. A $1,000-plus price tag leads many ...

SearchDataCenter

Get a template to estimate server power consumption per rack

Admins can struggle with power consumption estimation as infrastructure gets more complex. The kW-per-rack metric can help ...

When the chips are down, Intel turns to VMware's Pat Gelsinger

Newly appointed Intel CEO Pat Gelsinger brings technical chops to the top of the giant chipmaker, but it may take a while to ...

Intel CEO Bob Swan to be replaced by VMware's Pat Gelsinger

Facing delays of critical products along with superior offerings by AMD and Nvidia the past couple of years, Intel CEO is ...

SearchITChannel

Why 2020 may have changed the MSP industry forever

Managed service providers will come to view 2020 as the year their industry finally received the recognition and legitimacy they ...

Huntress security platform gets boost from Level Effect EDR

As part of an aggressive growth strategy, MDR services vendor Huntress Labs purchased endpoint detection and response technology ...

Cloud distributor Pax8 pursues UK growth, tech innovation

Pax8 fueled its global ambitions in a span of two weeks with a U.K.-based acquisition and strategic leadership team, in addition ...

Security risks of firewalls and VPNs

What are the key security risks and considerations to adopt firewall/VPN technology?

Dig Deeper on Network Security Best Practices and Products

What does a VPN concentrator do?

How can professionals boost public hotspot security?

Deep packet inspection vendors: Quite the diverse crew

Understanding MPLS IP VPN encryption

Related Q&A from Puneet Mehta

How do VPN concentrators and network access servers (NAS) differ?

What keeps unauthorized users from accessing my IP address/Internet?

Controlling network access by MAC address restriction on wired networks

SearchUnifiedCommunications

AR and VR in video conferencing offer post-pandemic benefits

Big Tech's uneasy balance of capitalism, censorship

Microsoft slow to fulfill request for more Teams channel control

SearchMobileComputing

Samsung lowers the price of Galaxy phones with S21 line

Qualcomm to buy Nuvia for $1.4 billion

High phone prices driving consumers to the used phone market

SearchDataCenter

Get a template to estimate server power consumption per rack

When the chips are down, Intel turns to VMware's Pat Gelsinger

Intel CEO Bob Swan to be replaced by VMware's Pat Gelsinger

SearchITChannel

Why 2020 may have changed the MSP industry forever

Huntress security platform gets boost from Level Effect EDR

Cloud distributor Pax8 pursues UK growth, tech innovation