Adventures in Networking, Part 5: Splunking

When I finished part 4, I had a zone-based firewall set up with rules for traffic between each zone. Since I started with a locked-down configuration, how did I know what was getting blocked, especially those services that may run in the background without any user intervention? I solved this, and many other problems, by… Continue reading Adventures in Networking, Part 5: Splunking

Adventures in Networking, Part 4: Zone Defense

After part 3, I had a fully-functioning, switched network. So then why would I want to change that? Ah, because if it ain’t broke, you aren’t doing it right. As I stated before, ACL-based firewalls are limited, defining only inbound, outbound, and local (to the router) rules on each interface. I didn’t like that limitation,… Continue reading Adventures in Networking, Part 4: Zone Defense