Security in a Data Center
Currently there are many types of attacks, and although we may think they only affect or are aimed at individuals, the truth is that datacenters can receive and get a lot of attacks. This means it should be properly protected in order to protect sensitive data (very important in our datacenter) and to ensure the availability of different services.
As we can see on the picture above, some of these vulnerabilities might be:
- Backdoors
- DoS
- SQL injection
- Rootkits
- Malware
- Virus
To avoid possible attacks we should have solutions that allow us to detect, block and eliminate potential threats. The first measures that should be implemented are:
- Firewalling: you use a NGFW (Next Generation Firewall) for connections to control input and output and determine whether to accept or not. These include among others NGFW of these systems.
- Firewall techniques.
- IPS (Intrusion Prevention System)
- Application control
- DLP (Data Loss Prevention): It is a software that monitors and protects sensitive data. Very important in our datacenter.
We will use Juniper devices SRX5800 for this matter, placed after the routers, as seen below.
We can’t forget the virtualized environments, and Juniper offers us vSRX solution. We can say it’s like the physical SRX5800 but it’s a software solution.