nikhilnayak98 / sand

An Enterprise Security Network Architecture
Apache License 2.0
0 stars 1 forks source link
dos-attack dos-protection firewall iptables netkit netkit-jh network-architecture network-security openvpn security security-architecture squid-proxy

Security Architectures and Network Defence

A scalable secure network infrastructure with defined credible zones of trust. It has automated iptables firewall rules deployment. It also has tested prevention firewall rules for TCP and UDP Flood attacks.

Network Design

Network Design

Phase 1

Phase 2

Phase 3

Augmented Features:

  1. TCP SYN Flood Protection.
  2. UDP Flood Protection.
  3. Usage of OpenVPN to connect to internal network.
  4. Automation of host firewall rules deployment.
  5. Usage of Squid Proxy Server to access Internet from Enterprise Zone and Extranet Zone.
  6. Usage of Squid Proxy Server to block malicious websites.
  7. Blocking SSH access, allow SSH only from Management Zone.
  8. Blocking SSH access into root, allow SSH access only to admin account.

How to Run Lab