Scribd Logo
Загрузить

Добро пожаловать в Scribd!

  • Firewall

    Загружено:

    Dyfi Mani
    94 просмотров14 страниц
    Firewall Cloud

    Оригинальное название

    Firewall Ppt

    Авторское право

    © © All Rights Reserved

    Доступные форматы

    PPTX, PDF, TXT или читайте онлайн в Scribd

    Этот документ был вам полезен?

    Это неприемлемый материал?

    Пожаловаться на этот документ
    Firewall Cloud

    Авторское право:

    © All Rights Reserved
    Скачайте в формате PPTX, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    94 просмотров14 страниц

    Firewall

    Загружено:

    Dyfi Mani
    Firewall Cloud

    Авторское право:

    © All Rights Reserved
    Скачайте в формате PPTX, PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    из 14

    FIREWALL

    CHARACTERISTICS AND TYPES


    FIREWALL
    • Firewall is inserted between premises network
    and the internet.
    • Its aim is to protect the premises network
    from internet based attacks.

    INTERNAL
    EXTERNAL FIREWALL NETWORK
    NETWORK
    CHARACTERISTICS
    • All traffic should pass through the firewall.
    • Only authorized traffic will be allowed to pass.
    • Four general techniques:
    Service control
    Direction control
    User control
    Behaviour control
    TYPES OF FIREWALL
    • Packet filtering firewall
    • Application level gateway
    • Circuit- level proxy firewall
    PACKET FILTERING FIREWALL
    PACKET FILTERING FIREWALL
    • A packet filtering firewall applies a set of rules to each
    incoming and outgoing IP packet and then forward or
    discard the packet.
    • Filtering rules are based on information contained in a
    network packet.
    Source IP address
    Destination IP address
    Source and destination transport level address
    IP protocol field
    Interface
    PACKET FILTERING FIREWALL
    • Two default policies are there to take default
    action to determine whether to forward or
    discard the packet.
    • Default = discard
    • Default = forward
    PACKET FILTERING FIREWALL
    • Advantage:
    • Cost
    • Low resource usage
    • Best suited for smaller network
    • Disadvantage:
    • Can work only on the network layer
    • Do not support complex rule based support
    • Vulnerable to spoofing
    APPLICATION GATEWAY
    FIREWALL
    APPLICATION GATEWAY FIREWALL
    • An application-level gateway, also called an
    application proxy, acts as rely of application-
    level traffic.
    • User requests service from proxy.
    • Proxy validates request as legal.
    • Then actions request and returns result to
    user.
    • Can log/audit traffic at application level.
    APPLICATION GATEWAY FIREWALL
    Advantage:
    More secure than packet filter firewalls.
    Easy to log and audit incoming traffic.
    Disadvantage:
    Additional processing overhead on each
    connection.
    CIRCUIT LEVEL FIREWALL
    CIRCUIT LEVEL FIREWALL
    • This can be a stand-alone system or it can be a
    specialized functions performed by an application-level
    gateway for certain applications.
    • It does not permit an end-to-end TCP connection;
    rather the gateway sets two TCP connections.
    • A typical use of the circuit- level gateway is a situation
    in which the system administrator trusts the internal
    users.
    • The gateway can be configured to support application-
    level or proxy service on inbound connections and
    circuit-level functions for outbound connections.
    THANK YOU

    Вам также может понравиться