In this practical Guide that we present to you today, you will be able to review and improve the perimeter of your company to repel most cyber attacks. This white paper has been prepared by specialists from Sophoswho have detected that many companies operate with a flat network topology: all their endpoints connect to a common switching matrix.
This topology compromises the protection, as it allows attacks to easily move or propagate laterally within the local network, since the firewall has no visibility or control over the traffic flowing through the switch.
MS Recommends
What can you do to improve this security?
The Good configuration of your company’s networks and firewalls is key to strengthening protection. In this technical document you will have a practical guide so that you do not skip any steps. Here is a summary of the main ideas you will find:
- Make sure you have the best protection with a modern high-performance next-gen firewall
with IPS, TLS inspection, zero-day sandboxes, and anti-ransomware protection with Machine Learning. - Block RDP and other services with the firewall.
Reduce the attack surface area as much as possible by thoroughly reviewing all
port forwarding rules to eliminate any non-essential open ports. - Be sure to properly protect any open ports, applying adequate IPS protection to the rules that manage traffic.
- Enables TLS inspection with support for the latest TLS 1.3 web traffic standards to prevent threats from entering your network through unencrypted traffic streams.
- Minimize the risk of lateral propagation within the network by segmenting LANs into smaller isolated zones or VLANs protected and connected by the firewall.
