Equipment Selection

Equipment selection is a commonly overlooked aspect of secure network design. The general belief that any hardware capable of performing an IT function is suitable for deployment is, unfortunately, not the case. Regardless of cost, all products may have well-known or not-yet-discovered security flaws.

Arbitrarily or automatically choosing the least expensive or the most expensive, or a certain brand of products, is not a winning security strategy. You should carefully evaluate each piece of computer equipment, from network device to host system, for its native security defenses or lack thereof, regardless of its cost or branding.

As you select, purchase, and deploy equipment, consider the vulnerabilities introduced and ...

Get Network Security, Firewalls, and VPNs, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.