Building Internet Firewalls (2nd Edition) |
|
|
|
|
This book is also available, brand-new, from 3rd-party marketplace sellers at Amazon.com, from $21.95.
|
The HTML code below can be pasted onto your web-site, your MySpace page, or blog - or any number of similar places - to create a link to this page:
If, instead of a text link, you'd like to create a link to this page which will display the book cover, if it's available, then the code below will do exactly that:
Check for the same book at these other US book sites:
• [ Abebooks ]
• [ Alibris ]
• [ Barnes & Noble ]
• [ Half.com ]
• [ Powells ]
… or check UK bookstores
|
Editorial Review / Publisher's Information:
Product Description
In the five years since the first edition of this classic book, Internet use has exploded. The commercial world has rushed headlong into doing business on the Web, often without integrating sound security technologies and policies into their products and methods. The security risks--and the need to protect both business and personal data--have never been greater. Like the highly respected, bestselling first edition, Building Internet Firewalls, 2nd Edition, is a practical and detailed step-by-step guide to designing and installing firewalls and configuring Internet services to work with a firewall. Much expanded to include Linux and Windows coverage, the second edition describes a variety of firewall technologies and architectures. It also contains a new set of chapters describing the issues involved in a variety of Internet services and protocols through a firewall. In addition to the standard email, News, FTP, DNS, and Telnet services, the book now covers web services and scripting languages, Windows NT services, authentication and auditing services, intermediary protocols, and database protocols. The book also has a complete list of resources, including the location of many publicly available firewall construction tools.
Amazon.com Review
In the vast and varied universe of computer books, only a few stand out as the best in their subject areas. Building Internet Firewalls is one of those. It's deep, yet carefully focused, so that almost anything you might want to know about firewall strategies for protecting networks is here. In addition, there's lots of information on the reasons that we build firewalls in the first place, which is to say the security risks that come with Internet connectivity. You'll learn a great deal about Internet services and the protocols that provide them as you follow this book's recommendations for stifling attacks. If there's a shortcoming to this book, it's its lack of coverage of the turnkey firewall products that are becoming popular among home and small-office users. Emphasis here is on more complicated network defenses that require careful design and setup--both design and implementation are the order of the day here. The authors carefully enumerate the threats they see in various situations, go into some detail on how those threats manifest themselves, and explain what configuration changes you can make to your perimeter defenses to repulse those threats. Plenty of illustrations make points about good and bad security strategies (you want to put the routers here and here, not here or here). You'll learn a lot by reading this book from cover to cover, no matter how much experience you have. --David Wall Topics covered: Means of protecting private networks from external security threats. The authors go into detail on attackers' means of exploiting security holes in common Internet services, and show how to plug those holes or at least limit the damage that can be done through them. With coverage of Unix, Linux, and Windows NT, the authors detail their philosophies of firewall design and general security policy.
|
Other Items You May Enjoy:
Browse Books From These Related Subjects:
Customer Reviews:
• Firewall Book Review
23 February, 2005
I think this is one of the best firewall books on the market. It is written in language that is easy to understand and has a lot of nice diagrams.
- Amazon Customer Review
• The Best Firewall Book Around, But Lacking Re: Policy Design
01 July, 2005
_Building Internet Firewalls_ is a great reference if you are looking for physical configuration recommendations (how to connect stuff) or protocol packet filtering characteristics (lots of great detail there), but it does not describe firewall policy design or management in any detail (and I'm not aware of a firewall book that does). This could use a few more "real world" examples of filter policies (not just physical architecture), perhaps even a chapter dedicated to each of a home network, a small-to-medium-size business (with perhaps a more complicated and rigorous policy), and a large enterprise (with multiple firewalls and a complex policy).
- Amazon Customer Review
• Classic Book At Creating Your Own Firewall!
25 February, 2006
O'Reilly's "Building Internet Firewalls-2nd Edition" by Zwicky is a classic book that fully describes how to build and integrate various types of firewalls into any type of networking infrastructure. The book is a beast (at over 800 pages) and covers the wide range of security concerns when implementing firewalls. Please note, this book does not cover firewalls that are platforms (so don't expect to learn how to admin a PIX or Juniper/NetScreen firewall), nor does it discuss firewalls such as CheckPoint. What this book does discuss (and in depth), is how to build your own firewall, from scratch using the O/S of your choice, and how to harden the host.
The book begins with a general introduction to TCP/IP and networking. Starting with Chapter 5 (about 100 pages into the book), the book really comes into it's own. The book's next few chapters focus on the different types of firewalls architectures (packet filters, proxy systems, bastion hosts (Unix, Linux and Windows)).
The third section of the book focuses on Internet services - RPC, TLS & SSL, WWW, FTP & TFTP, Sendmail, DNS, IRC, etc... All the major protocols are covered. I believe that this book discusses some of the fundamental TCP/IP protocols, from a security perspective, better than any other book on the market. For example, on page 352, is a detailed discussion on RPC and portmappers.
I have always enjoyed "Building Internet Firewalls" and still periodically reference it to help secure firewalls/hosts. This book should be placed various close to you on your IP Security bookshelf.
I give this book 5 pings out of 5:
!!!!!
- Amazon Customer Review
• Okay For Discussing General Ideas, But Not Much Real World
11 May, 2003
Okay for discussing general ideas, but not much real world use. There's not a lot to be had from this book. They cover too much and discuss too much generalized topics and never really touch on any real-world working, intelligent firewall fules and uses. Just too much generalized fluff. You'll get more from a 'man page' on iptables and be able to put it to use, at least, compared to this. It is interesting, but there's too much generalization and fluff and not much someone can *use* from it.
- Amazon Customer Review
• Important Intro And Reference
30 August, 2009
This book is probably the most important book published on the subject. It is a general look at how internet firewalls work from a conceptual point of view and their role in network security. This is not and is not intended to be a guide on how to use specific firewall products. It is an excellent overview to network perimeter security.
The book contains two basic elements: Conceptual understanding of firewalls and how to look at perimeter security generally on one hand, and detailed TCP protocol reference material on the other. I found (for the second edition) both sides were reasonably up to date, and that the industry hasn't moved far enough since 2000 to invalidate this material.
As I said, this is has very little product-specific information in it and it is not a substitute for product documentation (whether Cisco, Checkpoint, or Linux/Netfilter). However it is the best reference on the subject I have found, and it is the best introduction to network perimeter security I have seen. This topic also is universally applicable to IT fields and so should be considered to be a classic study of an important topic. For this reason, this book belongs on the bookshelf of every IT professional.
- Amazon Customer Review
|
