Contents

What is FireWall ?
- Software vs. Hardware Firewall
How does FireWall works ?
Types of FireWall Techniques
> Packet filter

> Application gateway

> Circuit level gateway

> Bastion host

Conclusion:
- What FireWalls can do ?
- What FireWalls cannot do ?

What is FireWall ?
FireWall is device that
provides secure connectivity
between networks
(internal/external).
A firewall may be a
hardware, software, or a
combination of both that is
used to prevent
unauthorized programs or
Internet users from
accessing a private network
and/or a single computer.

Software vs. Hardware Fire

Software Firewall
-Protect a single computer
-Usually less expensive,
easier to configure

Hardware Firewall
-Protect an entire network.
-Usually more expensive,
harder to configure

Norton Internet Security

Cisco PIX

Mcafee Internet Security

NetScreen

Outpost

WatchGuard

Ms. ISA Server

Check Point

How does a Firewall

work?
Inbound to or outbound from your
computer.
Inspects each packet of data that
arrives at either side of the firewall.
Determines whether it should be allowed
to pass through or if it should be
blocked. packets
packets
sent

received

received

sent

How a firewall works ?

Sniffing Mode
1) An attacker tries to compromise a service on the protected network.
2) The Firewall identifies the attempt.
Reset

Fire Wall

Alert

The FIREWALL can now:

LOG

Alert the admin

Harden the firewall
Or reset a TCP/IP connection

Types of FireWall
Techniques

1. Packet filter

2. Application gateway (a.k.a.

Proxy server)
3. Circuit-level gateway
4. Bastion Host

Applications
Presentations
Sessions
Transport

Packet
Filterin
g

Applications
Presentations
Sessions
Transport
Network

Network
DataLink

DataLink

DataLink

Physical

Physical

Physical

Router

Packet filter It looks at each packet entering or

leaving the network and accepts or rejects
it based on user-defined rules. Packet
filtering is fairly effective and transparent
to users, but it is difficult to configure. In

Application gateway
Telnet
Telnet

FTP
FTP

HTTP
HTTP

Applications

Applications

Applications

Presentations

Presentations

Presentations

Sessions

Sessions

Sessions

Transport

Transport

Transport

Network

Network

Network

DataLink

DataLink

DataLink

Physical

Physical

Physical

Application Gateway

Application gateway (Proxy Server)User uses TCP/IP applications, such as

FTP and Telnet servers. This is very
effective, but can impose a performance

Circuit-level gateway

Circuit-level gateway- It is a stand alone

application.
It does not permit end-to-end TCP
connection. It sets up 2 TCP connections:
> B/w itself and a TCP user on an inner host.
> B/w itself and a TCP user on an outer host.

Bastion host

> Bastion host is a special purpose computer on a

network specifically designed and configured to
withstand attacks.
> It generally hosts a single application, provides
platform for Application gateway and Circuitlevel gateway. It supports limited/specific
applications to reduce the threat to the computer.
Include applications- Telnet,SMTP,FTP.

Conclusion
What a firewall can do ?
What a firewall cannot do ?

What a personal firewall

can do ?
Stop hackers from accessing your computer.
Protects your personal information.
Blocks pop up ads and certain cookies.
Determines which programs can access the
Internet.
Block invalid packets.

What a personal firewall

cannot do ?
Cannot prevent e-mail
viruses
Only an antivirus product
with updated definitions can
prevent e-mail viruses.

Viru
s

dly
a
e
D

I
W

R
A

E
L

Virus can jump Firewall !!

After setting it initially, you cannot

forget about it

The firewall will require periodic updates

to the rulesets and the software itself.

Firewall

Source
D
E
R
U
C
E
S

>CNS Text Book

(William Stallings)
> Wikipedia

Thank You