Upload
dothien
View
213
Download
0
Embed Size (px)
Citation preview
PROTECT AND SECURE FOR STATE AND LOCAL GOVERNMENT
“We needed the network to beup and operational all the timeand Cisco could provide thereliability we required. TheCisco security solution has thebest reputation in theindustry.”
Don MillerTelecom/IT Manager
Washington State EmergencyManagement Division
SSSSSTTTTTAAAAATE OF TE OF TE OF TE OF TE OF WWWWWAAAAASHINGTSHINGTSHINGTSHINGTSHINGTON EMERON EMERON EMERON EMERON EMERGENCGENCGENCGENCGENCYYYYY
MANAMANAMANAMANAMANAGEMENT DIVISION CAGEMENT DIVISION CAGEMENT DIVISION CAGEMENT DIVISION CAGEMENT DIVISION CASE SSE SSE SSE SSE STUDTUDTUDTUDTUDYYYYY
IMPRIMPRIMPRIMPRIMPROOOOOVING EMERVING EMERVING EMERVING EMERVING EMERGENCGENCGENCGENCGENCY OPERAY OPERAY OPERAY OPERAY OPERATIONSTIONSTIONSTIONSTIONS
THRTHRTHRTHRTHROUGH OUGH OUGH OUGH OUGH A HIGHLA HIGHLA HIGHLA HIGHLA HIGHLY Y Y Y Y AAAAAVVVVVAILABLE,AILABLE,AILABLE,AILABLE,AILABLE,
SECURE NETWORKSECURE NETWORKSECURE NETWORKSECURE NETWORKSECURE NETWORK
“Everyone has cyber attacks. Hackers are coming up with better worms
and viruses and infiltrating public networks. As the agency responsible
for emergency management, our operations must have a dependable
security solution to handle these new threats,” said Don Miller, Telecom/
IT Manager, Washington State Emergency Management Division (EMD).
“The Cisco complete security solution includes Intrusion Detection
Services (IDS) and Virtual Private Networking (VPN) to provide us with
the security we need.”
Responsible for coordinating state, county and city emergency
operations, the EMD supports a system of emergency response and
recovery for various types of disasters and administers radio
communications systems and 9-1-1 programs. As such, the EMD provides
inter-agency communications through a network of microwave, satellite,
fibre, T1, broadband and dial-up. Funding for the EMD network typically
comes from grants.
Headed by Miller, the section responsible for managing the network has
been using Cisco products for some time. Miller’s group ensures
seamless communications between disparate emergency
management agencies – including state, county and city – in
the State of Washington. Due to the nature of the EMD’s
responsibilities, its networks must be continuously
available and secure. Security has recently become a
big concern for the EMD, particularly with respect to
cyber attacks.
The Challenge - Safeguarding the NetworkThe Washington State EMD team, which included
Miller, IS Supervisor, Tim Palmer and Network Manager
Jim French, required a comprehensive and highly
available security solution. The ideal network would be
reliable during natural disasters and other adverse
events. With a secure network in place, the EMD
employees could spend less time on threat-defense and
more time on the vital protection and emergency
assistance of the Washington state citizens.
The state required the ability for personnel to access
the Emergency Operations Center (EOC) from any
location. The EMD also wanted to improve site-to-site
communications by providing secure connectivity
among all its agencies. They felt that a VPN would
provide the most secure, cost effective, remote access
and site-to-site connectivity for the state throughout
Western and Eastern Washington.
The ultimate success of the project was due in large
part to the process the EMD team followed. After fully
assessing the need for increased network security, the
EMD worked with Cisco to build the plan for a
complete security solution. The EMD had previously
applied for and obtained funding through a Federal
Emergency Management Agency (FEMA) grant.
Cisco AdvantageOther vendors bidding on the project were unable to
fully compete with Cisco due to the comprehensive
security solution Cisco planned to provide. No other
supplier could provide the breadth of connectivity
and threat defense system offerings, including VPN,
firewalling, network IDS and endpoint protection.
Furthermore, Ciso uniquely offers both standalone
security appliances and security modules that can be
integrated into the wide array of Cisco routers and
switches. The defense-in-depth security offering from
Cisco gave the EMD team confidence to move
forward with Cisco as its security provider.
Internet
Washington State EMD Example Network Design
Server Farm
Local EOC Users
Server Farm
Local EOC Users
Core
& FW
VPN
IDS
WAN
Core
FW &
VPN
WAN & IDS
Western EOC Benton County EOC
The Solution - A Secure Cisco Network,End-to-EndThe EMD planned to install Web EOC information
sharing tools at two EOCs – the state EOC in Western
Washington and Benton County EOC in Eastern
Washington. The secure architectures implemented at
the two EOCs incorporated the following products.
Western EOC:
• Dual Firewall Services Modules (FWSMs)
installed in the core Cisco Catalyst 6513 switches
to provide stateful failover and stateful firewall
protection for all network segments including the
server farm, EOC operations, network operations,
and each of the WAN points of entry
• Cisco VPN 3015 Concentrators with software-
based encryption for remote access VPN,
enabling up to 100 simultaneous IPSec sessions
or 25 simultaneous clientless sessions
• Cisco IDS 4250 Sensors to protect against
unauthorized activity traversing the network, such
as attacks by hackers. These units analyze traffic
in real time for fast response to security breaches
• Catalyst 6513 modular switches for high perform-
ance, high port density Fast Ethernet and Gigabit
Ethernet aggregation in all parts of the network
• Catalyst 2950G-24 stackable switches that provide
wire-speed Fast Ethernet and Gigabit Ethernet
connectivity
Benton County EOC (in progress):
• Routers upgraded to IOS® with IDS
• Hot Standby Router Protocol (HSRP) for high
availability and redundancy
• Cisco PIX® 515 Security Appliances with stateful
failover
• Hardware VPN integrated into the firewall for
support of remote access to the EOC for staff
using Cisco VPN Client software during
emergencies
• Catalyst 4503 modular switches for Intelligent
Switching
• Catalyst 2950G-24 stackable switches
This new security architecture provides EMD a
defense-in-depth security deployment encompassing
the entire network in each EOC. This comprehensive
security is achieved with a layered approach utilizing
various complementary security technologies, such
as firewalling, VPN and IDS, collaborating to provide
the best protection against a variety of threats that
could endanger the productivity and efficiency of the
EMD.
The Results - A Reliable and Secure NetworkAt the time of this writing, the Cisco equipment has
been up and running continuously for nine months. Its
deployment will directly aid in the planned direct and
secure connectivity to department headquarters, other
state agencies and counties. For the EMD employees,
the network is always available, secure and easy to
access in the office or from remote locations.
Employees now have a dependable network on
which they can rely. In turn, the citizens of Washington
State can feel confident in the availability of critical
emergency services.
“Cisco VPN allows us to securely connect and
interface with agencies at all levels – including state,
county and city. This ensures constant communica-
tions,” said Miller.
Corporate HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAwww.cisco.comTel: 408 526-4000
800 553-NETS (6387)Fax: 408 526-4100
European HeadquartersCisco Systems International BVHaarlerbergparkHaarlerbergweg 13-191101 CH AmsterdamThe Netherlandswww-europe.cisco.comTel: 31 0 20 357 1000Fax: 31 0 20 357 1100
Americas HeadquartersCisco Systems, Inc.170 West Tasman DriveSan Jose, CA 95134-1706USAwww.cisco.comTel: 408 526-7660Fax: 408 527-0883
Asia Pacific HeadquartersCisco Systems, Inc.Capital Tower168 Robinson Road#22-01 to #29-01Singapore 068912www.cisco.comTel: +65 317 7777Fax: +65 317 7799
Cisco Systems has more than 200 offices in the following countries and regions. Addresses, phone numbers, and fax numbers are listed on theCisco Web site at www.cisco.com/go/offices.
Argentina • Australia • Austria • Belgium • Brazil • Bulgaria • Canada • Chile • China PRC • Colombia • Costa Rica • Croatia • Czech RepublicDenmark • Dubai, UAE • Finland • France • Germany • Greece • Hong Kong SAR • Hungary • India • Indonesia • Ireland • Israel • ItalyJapan • Korea • Luxembourg • Malaysia • Mexico • The Netherlands • New Zealand • Norway • Peru • Philippines • Poland • PortugalPuerto Rico • Romania • Russia • Saudi Arabia • Scotland • Singapore • Slovakia • Slovenia • South Africa • Spain • SwedenSwitzerland • Taiwan • Thailand • Turkey • Ukraine • United Kingdom • United States • Venezuela • Vietnam • Zimbabwe
Copyright 2003 Cisco Systems, Inc. All rights reserved. Cisco, Cisco Systems, and the Cisco Systems logo are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certainother countries. All other trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and anyother company. (0301R)Printed in the USA
The network has already demonstrated its strength. The EOC participated in a state-wide test response to a terrorist
dirty-bomb simulation, in which the network remained fully functional.
Also, in a real-life test of the security on the network, the Cisco IDS 4250 sensors blocked worm viruses that had
been (and continue to be) threatening, such as Sobig.F and Nimda. The success of this live test provided
additional confidence in the network to the EMD team.
“We needed the network to be up and operational all the time, and Cisco could provide the reliability we required,”
said Miller. “The Cisco security solution has the best reputation in the industry,” he added.
“Internally, the project ran very well with the excellent work and planning done by Tim Palmer and Jim French.
They deserve the credit for bringing everything at the EMD together. With their effort and commitment, we had a
very successful deployment with Cisco and its partner Northrop Grumman," said Miller.
More InformationFor more information on Protect and Secure for Government, call your Cisco representative or reseller today, or
visit us on the web at:
www.cisco.com