Building Internet Firewalls (2nd Edition)
by Elizabeth D. Zwicky, Simon Cooper, D. Brent Chapman
List Price:
Our Price: $9.93
You Save: $50.06 (83%)
Availability: Usually ships in 1-2 business days
Buy Used: from $1.03 (click here)
Category: Book
See more book details and other editions
Book Summary Information
Author: D. Brent Chapman, Elizabeth D. Zwicky, Simon CooperEdition: Paperback
Published: 2000-01-15
ISBN: 1565928717
Number of pages: 869
Publisher: O'Reilly Media, Inc.
Book Reviews of Building Internet Firewalls (2nd Edition)
Book Review: Classic book at creating your own Firewall!
Summary: 5 Stars
O'Reilly's "Building Internet Firewalls-2nd Edition" by Zwicky is a classic book that fully describes how to build and integrate various types of firewalls into any type of networking infrastructure. The book is a beast (at over 800 pages) and covers the wide range of security concerns when implementing firewalls. Please note, this book does not cover firewalls that are platforms (so don't expect to learn how to admin a PIX or Juniper/NetScreen firewall), nor does it discuss firewalls such as CheckPoint. What this book does discuss (and in depth), is how to build your own firewall, from scratch using the O/S of your choice, and how to harden the host.
The book begins with a general introduction to TCP/IP and networking. Starting with Chapter 5 (about 100 pages into the book), the book really comes into it's own. The book's next few chapters focus on the different types of firewalls architectures (packet filters, proxy systems, bastion hosts (Unix, Linux and Windows)).
The third section of the book focuses on Internet services - RPC, TLS & SSL, WWW, FTP & TFTP, Sendmail, DNS, IRC, etc... All the major protocols are covered. I believe that this book discusses some of the fundamental TCP/IP protocols, from a security perspective, better than any other book on the market. For example, on page 352, is a detailed discussion on RPC and portmappers.
I have always enjoyed "Building Internet Firewalls" and still periodically reference it to help secure firewalls/hosts. This book should be placed various close to you on your IP Security bookshelf.
I give this book 5 pings out of 5:
!!!!!
Summary of Building Internet Firewalls (2nd Edition)
In the vast and varied universe of computer books, only a few stand out as the best in their subject areas. Building Internet Firewalls is one of those. It's deep, yet carefully focused, so that almost anything you might want to know about firewall strategies for protecting networks is here. In addition, there's lots of information on the reasons that we build firewalls in the first place, which is to say the security risks that come with Internet connectivity. You'll learn a great deal about Internet services and the protocols that provide them as you follow this book's recommendations for stifling attacks.If there's a shortcoming to this book, it's its lack of coverage of the turnkey firewall products that are becoming popular among home and small-office users. Emphasis here is on more complicated network defenses that require careful design and setup--both design and implementation are the order of the day here. The authors carefully enumerate the threats they see in various situations, go into some detail on how those threats manifest themselves, and explain what configuration changes you can make to your perimeter defenses to repulse those threats. Plenty of illustrations make points about good and bad security strategies (you want to put the routers here and here, not here or here). You'll learn a lot by reading this book from cover to cover, no matter how much experience you have. --David Wall
Topics covered: Means of protecting private networks from external security threats. The authors go into detail on attackers' means of exploiting security holes in common Internet services, and show how to plug those holes or at least limit the damage that can be done through them. With coverage of Unix, Linux, and Windows NT, the authors detail their philosophies of firewall design and general security policy.
In the five years since the first edition of this classic book was published, Internet use has exploded. The commercial world has rushed headlong into doing business on the Web, often without integrating sound security technologies and policies into their products and methods. The security risks--and the need to protect both business and personal data--have never been greater. We've updated "Building Internet Firewalls" to address these newer risks.
What kinds of security threats does the Internet pose? Some, like password attacks and the exploiting of known security holes, have been around since the early days of networking. And others, like the distributed denial of service attacks that crippled Yahoo, E-Bay, and other major e-commerce sites in early 2000, are in current headlines.
Firewalls, critical components of today's computer networks, effectively protect a system from most Internet security threats. They keep damage on one part of the network--such as eavesdropping, a worm program, or file damage--from spreading to the rest of the network. Without firewalls, network security problems can rage out of control, dragging more and more systems down.
Like the bestselling and highly respected first edition, "Building Internet Firewalls," 2nd Edition, is a practical and detailed step-by-step guide to designing and installing firewalls and configuring Internet services to work with a firewall. Much expanded to include Linux and Windows coverage, the second edition describes:
Firewall technologies: packet filtering, proxying, network address translation, virtual private networks
Architectures such as screening routers, dual-homed hosts, screened hosts, screenedsubnets, perimeter networks, internal firewalls
Issues involved in a variety of new Internet services and protocols through a firewall
Email and News
Web services and scripting languages (e.g., HTTP, Java, JavaScript, ActiveX, RealAudio, RealVideo)
File transfer and sharing services such as NFS, Samba
Remote access services such as Telnet, the BSD "r" commands, SSH, BackOrifice 2000
Real-time conferencing services such as ICQ and talk
Naming and directory services (e.g., DNS, NetBT, the Windows Browser)
Authentication and auditing services (e.g., PAM, Kerberos, RADIUS);
Administrative services (e.g., syslog, SNMP, SMS, RIP and other routing protocols, and ping and other network diagnostics)
Intermediary protocols (e.g., RPC, SMB, CORBA, IIOP)
Database protocols (e.g., ODBC, JDBC, and protocols for Oracle, Sybase, and Microsoft SQL Server)
The book's complete list of resources includes the location of many publicly available firewall construction tools.
Encryption Books
- Computers & Internet > Web Development > Security & Encryption
- Business & Culture > Privacy
- Networking > Networks, Protocols & APIs
- Network Security
- Programming
- Home Computing > Internet
- Professional & Technical > Engineering
- Business & Investing > Industries & Professions > E-commerce
- Engineering
- O'Reilly > Network Administration
- Internet Security
- Computers & Internet: Programming: General
- Computers & Internet: Networking: Networks, Protocols & APIs: General
- Computers & Internet: General
- Business & Investing: Industries & Professions: E-commerce: General
- Arts & Photography
- Audiobooks on Cassette
- Audiobooks on CD
- Biographies & Memoirs
- Business & Investing
- Children's Books
- Comics & Graphic Novels
- Computers & Internet
- Cooking, Food & Wine
- e-Books
- Engineering
- Entertainment
- Gay & Lesbian
- Health, Mind & Body
- History
- Home & Garden
- Horror
- Law
- Literature & Fiction
- Medicine
- Mystery & Thrillers
- Nonfiction
- Outdoors & Nature
- Parenting & Families
- Professional & Technical
- Reference
- Religion & Spirituality
- Romance
- Science
- Science Fiction & Fantasy
- Sports
- Teens
- Travel
Inside Windows Server 2003 (2 Volume Set)by William Boswell
Addison-Wesley Professional; Published: 2003-04-24; Paperback; Book
Best price: $21.50
Price in other shops:
Understanding Directory Services (2nd Edition) (Kaleidoscope)by Doug Sheresh, Beth Sheresh, Systems Research Corporation
Sams; Published: 2001-12-08; Paperback; Book
Best price: $3.85
Price in other shops:
The Database Hacker's Handbook: Defending Database Serversby David Litchfield, Chris Anley, John Heasman, Bill Grindlay
Wiley; Published: 2005-07-14; Paperback; Book
Best price: $3.10
Price in other shops:
Networking Unix (UNIX Library)by Salim Douba
Sams Publishing; Published: 1995-08-01; Paperback; Book
Price in other shops:
Building Internet Firewalls (2nd Edition)by Elizabeth D. Zwicky, Simon Cooper, D. Brent Chapman
O'Reilly Media, Inc.; Published: 2000-01-15; Paperback; Book
Best price: $10.00
Price in other shops:
The CISSP Prep Guide: Mastering the Ten Domains of Computer Securityby Ronald L. Krutz, Russell Dean Vines, Edward M. Stroz
Wiley; Published: 2001-08-24; Hardcover; Book
Best price: $8.46
Price in other shops:
IAM Success Tips: Volume 1: Identity and Access Management Success Strategies: Volume 1by Corbin H. Links
CreateSpace; Published: 2008-01-18; Paperback; Book
Best price: $93.40
Price in other shops:
Linux Server Hacks: 100 Industrial-Strength Tips and Toolsby Rob Flickenger
O'Reilly Media, Inc.; Published: 2003-01; Paperback; Book
Best price: $5.95
Price in other shops:
Linux Firewalls (3rd Edition) (Novell Press)by Steve Suehring, Robert Ziegler
Novell Press; Published: 2005-09-24; Paperback; Book
Best price: $34.71
Price in other shops:
Hacking Exposed 5th Edition (Hacking Exposed)by Stuart McClure, Joel Scambray, George Kurtz
McGraw-Hill Osborne Media; Published: 2005-04-19; Paperback; Book
Best price: $21.38
Price in other shops:
Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses (2nd Edition) (Radia Perlman Series in Computer Networking and Security)by Edward Skoudis, Tom Liston
Prentice Hall PTR; Published: 2006-01-02; Paperback; Book
Best price: $34.00
Price in other shops:
Dns and Bindby Cricket Liu, Paul Albitz, Mike Loukides
O'Reilly; Published: 1998-09; Paperback; Book
Best price: $16.73
Price in other shops:
Network Warriorby Gary A. Donahue
O'Reilly Media, Inc.; Published: 2007-06-21; Paperback; Book
Best price: $23.00
Price in other shops:
SSH, The Secure Shell: The Definitive Guideby Daniel J. Barrett, Richard E. Silverman, Robert G. Byrnes
O'Reilly Media, Inc.; Published: 2005-05-10; Paperback; Book
Best price: $22.83
Price in other shops:
Security Warriorby Cyrus Peikari, Anton Chuvakin
O'Reilly Media, Inc.; Published: 2004-02-01; Paperback; Book
Best price: $19.50
Price in other shops:
Practical Unix and Internet Security, 2nd Editionby Simson Garfinkel, Gene Spafford
Published: 1996-03-31; Paperback; Book
Best price: $15.53
Price in other shops:
Firewalls and Internet Security: Repelling the Wily Hacker (2nd Edition) (Addison-Wesley Professional Computing Series)by William R. Cheswick, Steven M. Bellovin, Aviel D. Rubin
Addison-Wesley Professional; Published: 2003-03-06; Paperback; Book
Best price: $23.00
Price in other shops: