Bc. n prap. Petr Gryc University of Defence Brno, Czech republic
Motivation Subject of my student’s project Current state Quick review of main applied principles Complications and future plans
Creation of new formation and independent units in Czech Army Implementing VoIP in some dislocations An Example of current real topology settings
Border routers, as a interface between trusted and untrusted networks Concept of DMZ, servers with internal and external access
Working router settings containing Packet filtering Router and router services settings NAT-T QoS List of rules and recommended settings according to nsa.gov and cisco.com School laboratory operating
Restriction of unneeded router services and blocking unnecessary functions Basic static routing with „rough“ security implementation used together with exact access rules to servers for convenience of firewall settings Secured remote access and QoS
Cisco and Alcatel network technology, both of them with proprietary VoIP technology and end use devices Continuous changing and development of Czech Army IS various types and length of messages some of them are certified as Secret
Implementation VoIP security and interconnection to existing VoIP network through real Army servers Compare settings with real border router of detached military unit Applied better rules based on packet load of Czech Army IS
Summary: Subject of my student’s project, motivation Current state and main principles Future plans and complications Contact: Thanks for your attention