[unisog] Firewall Security Architecture

Cavender, Terry terry.l.cavender at Vanderbilt.Edu
Wed Sep 13 14:22:25 GMT 2006

We are starting down this road now.  Attached is the architecture
diagram.  While the firewall only shows one involvement but it will
actually separate the various tiers.



Terry Cavender, CISA, PMP
Security Service Delivery Manager

Information Technology Services

Vanderbilt University       Go Dores!!!
* Phone: (615)-343-3494
*  Fax: (615)-343-1605

Mail: Peabody #34

230 Appleton Place

Nashville, TN 37203-5721


Packages: 1231 18th Ave S

Suite 146 Hill Center

Nashville, TN  37212



From: unisog-bounces at lists.dshield.org
[mailto:unisog-bounces at lists.dshield.org] On Behalf Of Tim Lane
Sent: Tuesday, September 12, 2006 11:00 PM
To: unisog at lists.dshield.org
Subject: [unisog] Firewall Security Architecture


Hi All,

at Southern Cross University we are reviewing some our firewall security
architecture, particularly in relation to backups and the need for a
common management DMZ.  We would be interested in hearing from other
institutions in relation to the below questions.  

I am happy to summarise the answers when I receive them - thanks.

1. Does your organisation operate a separate private management VLAN/DMZ
for both external DMZ and internal DMZ systems to provide for services
such as Backup, Imaging, Monitoring and Alerting etc

2. If so how have you identified any specific security risk with
maintaining a enterprise wide network that all systems need to connect
to and how have you managed this

3. If not, then how have you dealt with the the generic management of
internal and external DMZ based systems (as in backups, imaging,
monitoring and alerting etc)

4. How many DMZs or firewall interfaces do you maintain,



Tim Lane
Information Security Program Manager

Information Technology and Telecommunication Services
Southern Cross University
PO Box 157 Lismore NSW 2480

*02 6620 3290   7        02 6620 3033   * tlane at scu.edu.au
* http://www.scu.edu.au <http://www.scu.edu.au>  

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.dshield.org/pipermail/unisog/attachments/20060913/a104bddb/attachment-0001.htm 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ITS Services Risk Profile Assessment handout.vsd
Type: application/octet-stream
Size: 197120 bytes
Desc: ITS Services Risk Profile Assessment handout.vsd
Url : http://lists.dshield.org/pipermail/unisog/attachments/20060913/a104bddb/attachment-0001.obj 

More information about the unisog mailing list