Professional Documents
Culture Documents
w w t . w c e n h c o r o . p o c . n i
Module Overview
Windows Security Overview Configuring Windows Firewall with Advanced Security
w w t . w c e n h c o r o . p o c . n i
is!s
w w t . w c e n h c o r o . p o c . n i
% &in
w w t . w c e n h c o r o . p o c . n i
#%&s, encryption, 'FS #pplication hardening, anti$irus OS hardening, authentication !etwork segments, "Psec Firewalls uards, locks Security documents, user education
w w t . w c e n h c o r o . p o c . n i
Firewall $rofiles De&onstration: -ow to Configure Firewall $rofiles Deploying Windows Firewall ules
Windows Firewall with Advanced Security is a host"'ased firewall the protects individual servers In'ound rules Control in'ound co&&unication initiated fro& the networ! All in'ound re+uests are 'loc!ed 'y default Out'ound rules Control out'ound co&&unication initiated 'y the host All out'ound re+uests are allowed 'y default Connection security rules Configure I$sec for encryption and authentication
w w t . w c e n h c o r o . p o c . n i
w w t . w c e n h c o r o . p o c . n i
% &in
Firewall $rofiles
Firewall profiles are a set of configuration settings that apply to a particular networ! type
w w t . w c e n h c o r o . p o c . n i
.he firewall profiles are: Do&ain $u'lic $rivate Windows Server ())* ( introduces the a'ility to have &ultiple active firewall profiles
ules
w w t . w c e n h c o r o . p o c . n i
Server e+uire&ents for WSUS Configuring Auto&atic Updates WSUS Ad&inistration What Are Co&puter 1roups, Approving Updates
w w t . w c e n h c o r o . p o c . n i
est !lients
LAN
Internet Automatic Updates
Assess
#hase (% )eploy
#hase *% Identify
w w t . w c e n h c o r o . p o c . n i
Approve Approve and and schedule schedule update installations update installations Review Review the the process process after the deployment is after the deployment complete is complete
)eploy
Update "anagement
Identify
Discover new updates in a convenient manner Determine whether updates are relevant to the production environment
w w t . w c e n h c o r o . p o c . n i
w w t . w c e n h c o r o . p o c . n i
w w t . w c e n h c o r o . p o c . n i
WSUS Ad&inistration
w w t . w c e n h c o r o . p o c . n i
Approving Updates
Updates can 'e approved auto&atically 'ut it is not reco&&ended
w w t . w c e n h c o r o . p o c . n i
Updates should 'e tested 'efore they are approved for production Updates can 'e declined if they are not re+uired
9ogon infor&ation
9a' Scenario
/our organi;ation has i&ple&ented new software for &onitoring client co&puters and servers3 .his software is already installed on the co&puters: 'ut your central &onitoring console is una'le to initiate co&&unication with the software3 .he installation routine for the software did not open the necessary port in Windows Firewall3 /ou need to deploy a Windows Firewall rule that allows all co&puters in the organi;ation to respond to co&&unication atte&pts fro& the centrali;ed &onitoring console that runs on port <)))%3 Docu&entation fro& the product vendor indicates that you can test this port 'y using a We' 'rowser to view an ?M9 file3 In the past &anage&ent of updates for clients and servers in your organi;ation has 'een ad hoc3 So&e servers have not had updates applied while other are applying updates i&&ediately3 .his has resulted in an insecure environ&ent3 /ou are i&ple&enting WSUS to 'egin i&ple&enting a controlled process for applying updates to clients and servers3
w w t . w c e n h c o r o . p o c . n i
9a'
eview
Why was it appropriate to deploy the firewall rule 'y using 1roup $olicy, Is the use of wuauclt3e0e typically re+uired when i&ple&enting WSUS,
w w t . w c e n h c o r o . p o c . n i