Design and implementation of Telia firewall laboratory
Varjoluoto, Samuli (2019)
Varjoluoto, Samuli
2019
All rights reserved. This publication is copyrighted. You may download, display and print it for Your own personal use. Commercial use is prohibited.
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-201904296282
https://urn.fi/URN:NBN:fi:amk-201904296282
Tiivistelmä
The thesis was assigned by Telia Finland Oyj, a large telecommunications operator that provides cellphone and internet connection subscriptions to private and business customers, as well as datacenter services and network design, implementation and maintenance for corporations. The objective was to design and implement a Check Point laboratory environment to replace an existing obsolete laboratory environment. The laboratory was to be used for testing firewall appliances and designing new firewall services that could be provided for business-to-business customers.
The initial topology design of the firewall laboratory was conducted with firewall specialists from Telia by interviewing to them and gathering information about what they wanted the end product to be like. The implementation of the laboratory environment initially consisted of clearing out old firewall appliances, switches and routers. The new firewall appliances and switches were manually installed in racks and cabled to create the physical topology of the laboratory. Remote management to the laboratory system was built over the internet and access was provided for the firewall specialists’ VPN network allowing the operation of the laboratory environment from anywhere.
The final product of the assignment was a functioning firewall laboratory that could be easily expanded and modified to match any needs. The provided laboratory could also be used as a midway point when migrating old customer firewall configurations from legacy systems to newer ones.
The initial topology design of the firewall laboratory was conducted with firewall specialists from Telia by interviewing to them and gathering information about what they wanted the end product to be like. The implementation of the laboratory environment initially consisted of clearing out old firewall appliances, switches and routers. The new firewall appliances and switches were manually installed in racks and cabled to create the physical topology of the laboratory. Remote management to the laboratory system was built over the internet and access was provided for the firewall specialists’ VPN network allowing the operation of the laboratory environment from anywhere.
The final product of the assignment was a functioning firewall laboratory that could be easily expanded and modified to match any needs. The provided laboratory could also be used as a midway point when migrating old customer firewall configurations from legacy systems to newer ones.