Firewalls

There are three types of firewalls available from ITS.

  • Virtual Firewalls
    Like the Network Intrusion Prevention System (IPS), the virtual firewall was designed to prevent malicious traffic at the campus network border. The IPS has, in large, replaced the need for virtual firewall service. However, regulated data transactions which require firewalls and other sensitive data users (e.g., PCI transactions, MiWorkspace sensitive data users, and others) still use the virtual firewall to protect their data. The ITS virtual firewall service uses Check Point’s SecurePlatform application software.
  • Data Center Firewalls
    Data Center firewalls were designed to protect specific network activities to and from specific projects, systems, and information housed in university data centers (e.g., sensitive research projects, Wolverine Access transactions, MiServer instances, and others).
  • Custom Unit Firewalls
    Campus units requiring additional firewall security for specific business activities and transactions can work with ITS to design, implement, and maintain custom firewalls. Custom firewalls can be administered by unit IT professionals, or ITS. Custom firewalls can support point-to-point tunnels, packet inspections of in or outbound traffic, and full-featured event logging.
Note: Units can request changes to firewalls using the Firewall Change Request Form or by contacting the ITS Service Center. Change request require the following information:
  • Source
  • Destination
  • Protocol
  • Port(s)

Firewall training is available for unit IT staff from the UMnet Administration team. They can also provide recommended vendor courses.