Hello, Where i work i have a small LAN network which is behind a router and a firewall. Am i right in believing that the network is secure from hackers since its behind a firewall or can the hackers still find ways to get into the system. And if they can, can someone give me a few ideas what methods they might use so i can in turn increase the networks security. Many Thanks Glyn

A firewall is a start, but you still have a long ways to go! You need to implement a (IDS)Intrusion Detection System that is monitored and has good reports, a good antivirus package on any of your servers and also on any of your workstations with automatic updates, and network penetration testing is a must. Good Luck,

step 1: You are never totally secure from hackers. step 2: After realizing step 1, here are some things to look for. Definitely as stated above get and implement a good IDS. They are well worth it. Also, you are only as secure as your router/firewall. Ensure that your firewall has a complex password. Many people install those small router/firewall solutions from linksys and the like and never change the default password. look at the firewall's settings and lock it down as tight as possible. Ensure that your firewall is not only using NAT (Network Address Translation, it should already be using this. I believe it is industry standard by now.) but also some sort of packet inspection/filtering system. Mine uses SPI (Stateful Packet Inspection) which looks at each packet of data coming in for signitures of DOS and DDOS attacks as well as malformed/fragmented headers/packets used by attackers. Most importantly check out your firewall on the net. Are there any updates/patches you should get? Are there any known hacks out there for your particular firewall?? If so how can they be prevented?? Also stated above Network Penetration Testing *is* a must. Who knows your network better than you?? Try to come up with any way to gain access remotely to your network. Try to come up with any way that an employee can set-up access for an attack. Think/research ways to penetrate your network. Try these techniques. If any are successful, then stop them from happening again. Lastly, stay informed and up-to-date.