Professional Documents
Culture Documents
What is a firewall?
Firewalls are frequently thought of as a very complex
system that is some sort of magical, mystical.. Thing.
What is it really?
A machine that is more selective than a router that
passes data from one network to another.
Some are more complex, some are less complex, but the
fundamental point is that they implement a specific security
policy for the network traffic between two (or more) points of a
site.
Firewalls - Overview
Relay Mail
Provide Domain Name Service (DNS) Capabilities, and possibly
running a split DNS environment
Filter and otherwise control all traffic flow between the outside
and the inside. A site will design a security model (what types of
connections are allowed, etc.) and have the firewall implement
this as closely as possible.
Firewalls - Overview
Firewalls - Overview
Firewalls - Overview
Firewalls - Types
Firewalls - Types
Firewalls - Types
Firewalls - Types
Firewalls - Types
10
Firewalls - Types
11
Firewalls - Types
12
Firewalls - Pro/Con
Application Firewalls
Pros:
The proxies allow for a very fine level of control over any
connection, and content within the connection.
Typically simple (relatively) to setup and maintain.
Cons:
Any new protocol to be supported must have a proxy written
for it.
Running the proxy for each connection incurs additional
overhead, and can slow down network access.
Can have difficulty with UDP traffic and UDP-based protocols.
13
Firewalls - Pro/Con
Cons:
The granularity of control is coarser.
14
Firewalls - Pro/Con
Hybrid
The pros and cons of a Hybrid firewall really depend
on what has been added or changed from each basic
type of system. Some attributes from each system help
to cancel out some of the Cons for the other type.
15