Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Hardware Firewalls
• Protect an entire network
• Usually more expensive, harder to configure
• Implemented on the router level
Software Firewalls
• Protect a single computer
• Usually less expensive, easier to configure
Firewall Rules
Allow
Block
Ask
Conditions,
Criteria
INTERNE
T
Protected
Firewall Network
FIREWALL TECHNIQUES
Packet filtering
• Packets (small chunks of data) are analyzed against a set of filters.
• Packets that make it through the filters are sent to the requesting
system and all others are discarded.
Proxy service
• Information from the Internet is retrieved by the firewall and then
sent to the requesting system and vice versa.
Stateful inspection
• Its a new method that doesn't examine the contents of each packet
Application gateway
• Applies security mechanisms to specific applications, such as FTP and
Telnet servers.
• This is very effective, but can impose performance degradation.
• Zone alarm
• Panda firewall
• Black ICE defender
• Tiny personal firewall
Conclusion
Firewalls protect private networks from hostile intrusion from the
Internet.
Hardware firewalls don’t run physically on your system, hence they
don’t affect system performance.
Software firewalls are less expensive and easy to configure compare to
hardware firewalls.
Firewalls allow network administrators to offer access to specific types
of Internet services to selected LAN users.