The Firon Security Server is the flagship of ComputerSecurityResearch.com.  The Firon sits between all  networks (typically the Internet, your local servers, and your local client PCs), authorizing and authenticating all network traffic between the networks it is installed on.  Attempts to compromise the computers behind the Firon are stopped, reported, and the Firon dynamically updates it's permissions to block further access to otherwise allowed services from suspect sources.  The Firon provides firewall, routing, and proxy services combined into one powerful package.  Firon 8.1 can handle multiple physically and logically separate networks.  The Firon is more flexible than the routers that come with DSL and cable modem, and the standard routers you can typically buy online or off of the shelf.

Security Features

• The Firon server typically sits between the Internet and internal servers and PCs.  All traffic between the Internet and local networks must pass through the Firon and therefore are subject to the Firon's security.
• The Firon goes beyond the typical firewall protection from external attacks and probes by also detecting illegal internal activity.  Internal security can be inadvertently compromised by local users who don't realize the "cute software" their friend gave them actually hosts a trojan or some other security risk.  The Firon monitors all internal network traffic detecting multiple types of internal network compromises.
• The Firon effectively hides internal systems from external probes and scans, preventing would-be attackers from determining the number and type of computers on the internal networks.
• The Firon comes with a large set of alarms  that only a would-be attacker will set off.  Because normal traffic will not trigger the alarms, and virtually every attacker will set them off, all attempts to compromise the security of the Firon and the networks it protects are prevented.
• The Firon records all illegal activity and stops security violators from further access, even to otherwise valid services, from that point forward.
• The Firon is highly configurable to allow only the desired traffic from one network to another, even directionally (allow connections from network a to network b, but deny those same connections from b to a).  All illegal  traffic is blocked and reported.
• The Firon detects all the modern network scans used to probe servers for available services and vulnerabilities.  The Firon stops and reports all service scans.
• The Firon detects all the modern network scans used to probe through a firewall and determine the internal network topology and inventory.  The Firon stops and reports all topology scans.
• The Firon keeps track of the state of all connections between the networks it is connecting.  The Firon stops and reports all illegal-state traffic, an early indication of an attacker or an internal compromised system.
• The Firon reports activity via email and can be configured to log all network activity as needed.
• Multiple Firons can be configured to work together, providing multiple layers of network security and a tighter "net" of security in cases where multiple networks exist on separate physical connections.

Network Types and Speeds

• The Firon 8.1 can handle all modern network mediums and speeds from standard CAT5 to fiber optic and wireless.
• The Firon 8.1 can be installed in  all broadband connections from a 1.544 Mbps T1 to a Gigabit connection.

Supported Operating Systems

• The Firon 8.1 works with all modern OSes, including networks that have a mix of different OSes.  Supported OS networks include the Windows 2000 and XP families, Windows 9x, Windows NT, Linux, and all forms of Unix.

Supported Protocols

• All TCP/IP protocols are supported, including (but not limited to) the following:
• HTTP - web server
• HTTPS - secured web server
• FTP - FTP server
• SMB - Windows network protocol
• SMTP - email server
• POP3 - email clients
• DNS - domain name resolution
• NNTP - news servers
• IPSec/VPN - Virtual Private Network protocols
• ICMP - ping and routing protocols
• SSH - secured shell
• Telnet - remote login
• Finger - user identification service
• Whois - system identification service
• X400 - email services
• RPC - remote procedure call servers
• Kerberos - network authentication

Administration

• The Firon can be Administered in any of the following three methods (including combinations of the three), all three are completely secure, from the most paranoid to the most flexible:

  (1) Physical Access only.
  (2) Local network access only.
  (3) Secured and Authenticated external access only.
  

• The Firon has VPN capabilities to connect remotely and securely with ComputerSecurityResearch.com for updates, modifications, and security audits.

Load Balancing and Support of Future Growth

• By installing the Firon Security Server between the Internet and local networks, two forms of load balancing are available.  Each of these types of load balancing grow with increased demand and web presence.
• The Firon can be configured to use multiple Internet connections.  Network traffic is efficiently shared across all Internet connections to increase the total bandwidth available for communications between the Internet and local systems.
• The Firon can be configured to load balance incoming connection requests across multiple internal servers.  For example, if there are twenty publicly-accessed web servers supporting your web presence, one Firon with one or more connections to the Internet will balance the network load across those twenty web servers.  From the Internet it appears there is only one server, increasing the overall security of the internal systems.

Intrusion Detection Systems

• IDS' give real-time warnings of attempts to compromise security by monitoring network traffic.  Traffic can be logged for further analysis.
• IDS' detect many types of attacks by traffic and protocol analysis and pattern detection.
• The Firon Security Server can have IDS systems installed to ensure real-time detection of attacks and security compromises.

Additional Services

• The Firon can also host additional services.  Some services are better ran on a second Firon server to maximize security and minimize the impact of the additional service on the Firon security system.  By running services on Firon Security Servers overall security is increased as compared to non-Firon servers hosting additional services behind a single Firon server.  The following is a list of some of the more popular services hosted by Firon servers.
• VPN services.  If remote networks or computers need to connect securely to the internal network the Firon can host the client and server side VPN software.  By integrating the VPN directly into a Firon Security Server, all network security rules can be implemented on all VPN connections.  This solution is more secure than typical VPN solutions.
• Web services.  Both HTTP and HTTPS services can be hosted on Firon Security Servers.
• DNS.  DNS can be maintained by Firon Security Servers.
• SMTP and POP3.  Complete email server solutions can be hosted on Firon servers.
• FTP.  FTP services can be hosted on Firon servers.