Skip to end of metadata
Go to start of metadata
Network Firewalls at LBNL
LBLnet, the data network within LBNL, is not protected by a conventional firewall.
We use a powerful IDS (intrusion detection system) that passively examines every data packet entering and leaving LBNL and compares them to an evolving list of known and suspicious behaviors and patterns. When harmful or potentially harmful behavior is detected, the outside participant is blocked (by ACL or null-route) from transmitting to LBNL.
Occasionally, groups within LBNL require further data protection. When this is necessary, LBLnet Services Group provides and supports (on a time-and-material basis) conventional firewall protection or (in special circumstances) router ACLs.
If you require such a firewall or if you want to discuss this further, please contact the LBLnet Services Group.