Call Us: US - +1 845 478 5244 | UK - +44 20 7193 7850 | AUS - +61 2 8005 4826

Implementing a policy for strong passwords

Network infrastructures can include numerous pieces of hardware — including routers and cables — and software and network applications that include varied operating systems and firewalls. Network infrastructures also include network services such as internet connections.

Resource-savvy MSPs know to deploy their tightest security for their most critical data. But once the critical assets have been identified, what’s the best way to implement layered security? Writing for the SANS Institute, Karnail Singh suggests a four-layered network infrastructure security approach.

Security Layer 1: Perimeter Defense 

This security layer addresses network applications such as firewalls and proxy servers. Somewhere between 70-80% of attacks hit organizations’ internal networks, so these forms of internal defense are essential.

Properly configured routers can protect against a distributed denial of service (DDoS) attack, which floods a server and brings operations to a standstill. By blocking packets with spoofed IPs, network administrators can blunt these attacks. Administrators can also take steps to prevent their networks from participating in a DDoS attack, in part through router-based commands.

Other steps include:

  • Controlling filter configurations for privileges and use
  • Relying on logging that can trace an attack
  • Testing filters to ensure that they’re still operating