Web Application Firewall placement in the network.

Web application firewall (WAF) is not an alternative to Next Generation firewall, security is best archived in layers and WAF provides an extra layer of protection to your web server and applications. It is recommended to place your WAF appliance behind the perimeter Next Generation firewall and in front of your web server farm.

Internet <—–> Next Generation Firewall <——> Web Application Firewall <——> Web Server Farm & Internal Network.

Good references:

http://www.imperva.com/waf/

http://www.imperva.com/resources/videos.asp

McAfee Enterprise Firewall Virtual Appliance for Free.

McAfee offers a 30 day free evaluation copy of their Enterprise firewall as a virtual appliance. If you are considering replacement from traditional firewalls to Next Generation firewalls you should check it out.

reference.

http://go.mcafee.com/firewallvirtual_eval.cfm

Juniper knowledge base search plugin for Firefox

Juniper has a plugin for Firefox that can be used for easy search of their knowledge base articles.

Go to http://kb.juniper.net and click on ‘Install Search Engine PlugIn’

Cisco IOS Security vulnerability bug checker tool

Is there was a better way to see a list of all known vulnerabilities or bugs for a particular IOS version instead of looking at the version release notes?

The answer is yes, Cisco recently released a free new Security vulnerability checker tool for their IOS versions.

In an easy to use drop down menu we can now select a particular IOS version to get a list of all known vulnerabilities that effect that version.

Ref.

www.cisco.com