Build a dynamic firewall or how to add dynamically clients to iptables
In Summary : Some weeks ago I read an article about zero trust networks. Even though I knew the concept, I thought to myself "How muc...
https://updatesinfosec.blogspot.com/2018/10/build-dynamic-firewall-or-how-to-add.html
In Summary :
Some weeks ago I read an article about zero trust networks. Even though I knew the concept, I thought to myself "How much of a zero trust network can I build with easy methods?". So I started to re-model my firewall to add dynamical rules to it depending on the trust level of the client. Before I start please note that this is just the first building block. What I have in mind of doing in the future and a discussion about the security issues with this architecture are in the end of this article. So if you read it and want to shout "I can easily circumvent this with xyz", please see this discussion section. And if you have something I was not thinking of, please let me know (preferable on twitter). In the following I assume everyone knows how iptables works. [...]
kindly refer the following link as follow up :
https://ift.tt/2O9OMuX
Some weeks ago I read an article about zero trust networks. Even though I knew the concept, I thought to myself "How much of a zero trust network can I build with easy methods?". So I started to re-model my firewall to add dynamical rules to it depending on the trust level of the client. Before I start please note that this is just the first building block. What I have in mind of doing in the future and a discussion about the security issues with this architecture are in the end of this article. So if you read it and want to shout "I can easily circumvent this with xyz", please see this discussion section. And if you have something I was not thinking of, please let me know (preferable on twitter). In the following I assume everyone knows how iptables works. [...]
kindly refer the following link as follow up :
https://ift.tt/2O9OMuX
