MultiCom Technical Support Forum Index MultiCom Technical Support
Supporting MultiCom Routers, Firewalls and VPN
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

What is the best way to secure the MultiCom Firewall?

 
Post new topic   Reply to topic    MultiCom Technical Support Forum Index -> 3.x Frequently Asked Questions
View previous topic :: View next topic  
Author Message
Support



Joined: 09 Oct 2002
Posts: 175
Location: Lausanne, Switzerland

PostPosted: Fri Jun 13, 03 13:54    Post subject: What is the best way to secure the MultiCom Firewall? Reply with quote

By default the MultiCom Firewall protects your network with the SecureWall. This blocks incoming packets that are not a response to an outgoing request. If the packet is a response to an outgoing request it is allowed into the network.

There are additional steps that you can take however to better secure your network while using the MultiCom Firewall:

Basic Security
  • Have you changed the default username and password to access the firewall?
  • Have you activated the NAT firewall on the WAN interface? (also known as the SecureWall)
  • Have you activated the standard filtering protection? (Dos, Spoofing, TCP-Flags)
  • Did you save your configuration in the boot memory?
  • Did you make a backup of your active configuration file (AND the security file if you are using IPSec)?
  • Do you only access the MultiCom firewall itself using HTTPS or SSH telnet?

Medium Security
  • Have you disabled unused interfaces?
  • Have you activated filtering rules to limit the services you want accessible through the firewall?
  • Have you remapped the firewall's web server, telnet, ftp services with NAT for the LAN and/or WAN? (use a different port than 443 for HTTPS access for example)
  • Have you limited which IP addresses/ computers are allowed to go through the firewall to access the Internet?
  • Have you disabled unused services on the firewall?

Maximum Security
  • Have you limited which IP addresses can administer the firewall (using filtering rules)?
    have you added a logging rule for each of your filtering rules to know when they are activated?
  • Have you blocked or limited pings to the firewall?
  • Have you enabled syslog reports to a particular IP address and are running a syslog software to keep track of activity?
  • Are you using the latest firmware?
  • Have you added a filtering rule with logging to see all out going traffic that is attempted but not allowed (for instance traffic not to a webserver)?
Back to top
View user's profile Send private message Send e-mail Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    MultiCom Technical Support Forum Index -> 3.x Frequently Asked Questions All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group