Académique Documents
Professionnel Documents
Culture Documents
Countermeasures
Sir. Ahmad Kamalrulzaman Othman
FSKM, UiTM Johor
Objectives
Introduction
Firewalls are one of the fundamental devices
used to secure a network. This chapter
explores the basics of firewalls and how they
work. Based on the evaluations done here you
will be able to determine under what
circumstances a firewall solution is appropriate.
What is a Firewall?
Packet filtering
Stateful packet filtering
User authentication
Client application authentication
Types of Firewalls
Packet filter
Application gateway
Circuit level gateway
Stateful packet inspection
Source address
Destination address
Source port
Destination port
Protocol type
Firestarter
Norton personal firewall
McAfee personal firewall
Outpost firewall
Disadvantages:
Application Gateway
10
Disadvantages:
11
Product examples:
12
13
14
15
16
Examples:
SonicWALL (www.sonicwall.com/)
Linksys (www.linksys.com/)
Cisco (www.cisco.com)
17
Hybrid Firewalls
18
Implementing Firewalls
Network host-based
Dual-homed host
Router-based firewall
Screened host
19
Network Host-Based
Cheap solution
20
In Practice: DMZ
Demilitarized zone
More companies are
using these as part of
their overall security
solution
21
Dual-Homed Hosts
Expanded version of
the Network host
firewall
Also runs on top of an
existing OS
Disadvantage, like
Network host firewalls,
is its reliance on the
security of the OS
22
Router-Based Firewall
23
Screened Host
A combination of firewalls
Bastion host and screening router is used
Similar in concept to the dual-homed host
24
25
Using a Firewall:
Configure it properly
Consider a consultant for initial setup
Review logs periodically for anomalies
Utilize statistics for baseline performance
26
27
28
29
Summary
30
Summary cont.
Packet filter
Application gateway
Circuit level gateway
Stateful packet inspection
Implementations include:
Network host-based
Router-based
Dual-homed and Screened host
31