In this article I describe some important network security basic concepts for CCNA exam. It is necessary to know about some network security basic concepts along with management of networking devices. We know there are a lots of threats available on internet. Similarly for any network there are many ways to effect the network from virus and hackers. If your network is connected with internet, it is not safe.
There are many types of vulnerability in a network connected with internet. Hackers from all over the world always try to get information from any network. You can safe your network from these attacks by understanding some network security basic concepts. Now a lots of devices transfers data over the internet over wired, wireless and cellular networks.
Network security protects the devices from unauthorized access and malfunction activities. Malfunction activities can modify or destroy the data. The major cause of data theft is frequently use of internet from mobile and computers. We share personal data on social sites and do financial transaction on internet. The data shared on internet is always on risk from hackers and attackers. To keep safe the data from unauthorized access network security is necessary. We can prevent the attacks on our devices by aware about network security basic concepts.
Suppose a person A want to send email to person B. A third person C is present in the same network and person C capture the data and alter some text. In another case suppose person A sharing some financial details to person B. it is possible the person C can fetch the details and use them later in future for any online fraud or money theft. So we can say the purpose of network attack is to steal the information from any computer device. There are multiple types of threats that can be used by hackers to steal the information from a network.
What is network security ?
Network security is necessary to protect the own networking devices and clients from unauthorized access, destruction and malfunction etc. Internet is the main resource of security threats. We manage the network for protection from these threats. We can say network security is all about to protect our internet connected computers from virus and hackers. You can manage our network security by using some firewalls, router etc. We allow unauthorized access to unknown persons by compromising own network security.
Network security methods
There are many devices available to keep secure your network from cyber attack. You required to know the network security basic concepts to use these devices smartly. We can deny the incoming traffic on port basis. Firewall allow us to block the incoming traffic from unwanted ports. We can allow what kind of service request we want to enter in our own network. Similarly there are many methods and device can be used for various kind of network security. Some common methods used for network security are below.
Access control to our network devices.
Network devices are accessible from inside of network as well as outside of network. Hackers can modify or damage our network device configurations. Configure the access control of networking devices with very precautions. You can change the access port from outside. It is not necessary the hacker attacks from outside, they can also attack from inside of the network. The main aim of a network administrator should be to keep secure the access panel of networking devices. Always change the default username and password in the networking devices to keep them secure from unauthorized access.
Firewall for network security
Firewall is very common device used by network administrators to keep secure the network. There are two types of firewall available one is hardware device and another is software basis. Software basis firewall can be used for particular computer or server. In case of network security I am talking about the hardware device. The firewall can be configure to enter the traffic for a particular service like https service on port 443. A firewall deny all incoming traffic by default. Network administrator require to configure the firewall according to requirement of services. Some network provides mail service some web services on internet. Firewalls can be configured accordingly. Firewall also prevent the unwanted traffic from network to out side. Firewall works like a gatekeeper for a network.
Application security in network
Generally network provides the application services like web services, mail services etc. Every application service run on a particular network port. For example web services are accessible on port 80 and 443. Attacker try to enter into the network from these open ports. We require to keep these ports secure. Attackers try to find the vulnerabilities in the application to modify or damage the application. To avoid such type attacks we can use application prevention systems like UTM.
Creation of VPN in routers of the network
VPN stands for Virtual Private Network. VPN configured in the end to end routers over the internet to keep our data safe. A VPN encrypt the connection between networks in a WAN. Data encrypt at the end of transmission and decrypt at the end of reception. Authentication keys are used to encrypt and decrypt the data. These keys are secure. A data flow tunnel created at the two end points of different network.
Analytics of data in a network
Analytics of data means the behavior of data flow in the network. You can use the analytics of data to keep secure your network. For example if you see the data flow rate of different service then you can imagine the data threat and protect it. Some behavioral analytics tools provides features to detect automatically activities and protect the data.
Wi-Fi security in the network
Wi-Fi is very common method of communication in today life. You can secure the Wi-Fi network by using different encryption methods. Never keep your Wi-Fi in open mode. Open means no need of password to connect the Wi-Fi network.
Switchport security in the network
Always keep your network switch switchports in secure mode. MAC binding is very strong method to keep secure the network from unauthorized access. Shut down the ports which are not in use. networking Always keep your network switch switchports in secure mode. MAC binding is very strong method to keep secure the network from unauthorized access. Shut down the ports which are not in use.
IPS Intrusion Prevention System in network.
IPS are hardware like firewall and router. The IPS provide additional layer of security to the network. The IPS automatically detects the unwanted traffic access from the network and drop it. IPS works by using the database in it. The data base of IPS contains the common threat data and deny the access of network.
So these are some common methods use to keep secure your network from unauthorized access. You can use above methods by knowing the network security basic concepts only.
I hope you enjoy and understood this article about network security basic concepts. For any query or suggestion on this article you may contact us or drop a comment below. Your suggestions are always welcome by us.
Bonsoir et merci pour vos efforts traduits ici pour nous aider a réussir notre CCNA mais il manque quelques captures d’écrans pour illustrer un exemple ou des vidéos qui accompagnent le cours pour que nous appréhendons bien les concepts illustrés dans chaque chapitre
We try to give our best for ccna exams