Scribd Logo
Importer

Bienvenue sur Scribd !

  • Firewall Technologies

    Transféré par

    umaima tahir
    13 vues15 pages
    firewall in network security

    Copyright

    © © All Rights Reserved

    Formats disponibles

    PPTX, PDF, TXT ou lisez en ligne sur Scribd

    Avez-vous trouvé ce document utile ?

    Ce contenu est-il inapproprié ?

    Signaler ce document
    firewall in network security

    Droits d'auteur :

    © All Rights Reserved
    Téléchargez comme PPTX, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    13 vues15 pages

    Firewall Technologies

    Transféré par

    umaima tahir
    firewall in network security

    Droits d'auteur :

    © All Rights Reserved
    Téléchargez comme PPTX, PDF, TXT ou lisez en ligne sur Scribd
    Signaler comme contenu inapproprié
    sur 15

    Firewall Technologies

    ……….
    • A firewall cannot handle all the destructive
    threats which are coming from unauthorized networks.
    Therefore, to develop a secured network different types of
    firewall technologies are used
    • A firewall cannot handle all the destructive
    threats which are coming from unauthorized networks.
    Therefore, to develop a secured network different types of
    firewall technologies are used
    • A firewall is a software that establishes a security perimeter
    whose main task is to block or restrict both incoming and
    outgoing information over a network
    ………..
    • Firewall is one of the most important concepts related to the network security.
    • Firewall can be software or hardware.

    • The firewall has a mechanism to allow some traffic to pass while blocking the other
    traffic (this is often called filtering).
    • one of the most important points that
    should be taken in to attention is the firewall capacity.
    Firewall behavior basically depends on the capacity.
    Firewalls with higher capacities are expensive.

    • The Packet filtering is referred to as static packet filtering,


    this method Controls the access to a network by analyzing
    the incoming and outgoing packets and letting them pass
    or uncertain them considered on the IP addresses of the
    source and destination
    ……..
    • The Network address translation is a
    methodology of remapping one IP address space into
    another protocol datagram packet header while they
    are in transit across a traffic routing device.
    • Circuit-Level gateway is a type of firewall technique.
    Circuit-Level gateways perform at the session layer of
    the OSI model or between application layer of tcp/ip
    stack. They monitor TCP handshaking between packets
    to determine whether a request session is
    legitimate.
    ………
    • A Proxy firewall is a network
    security system that prevent network resources
    by filtering messages at the application layer.
    • An Application-Level
    gateway is firewall proxy which provide network
    security. It filters incoming node traffic to certain
    specifications which mean that only
    communicated network application
    data is filtered.
    Characteristics of Good Firewall :
    Transfer of information either from inside to
    outside or from outside to inside must pass
    through the firewall.
    • The authorized traffic should be allowed to
    pass.
    • The firewall must be strong enough to
    prevent from attacks.
    Types of firewall
    • There are different kinds of technique which
    may be implemented by a firewall.
    • (a) Packet filter
    • (b) Application gateway
    • (c) Circuit level gateway
    • (d) Proxy server
    Packet Filter
    • It looks at one packet at a time and then apply
    some set of rules to each packet and then
    decides to either forward the packet or
    discard the packet.
    • The rules are based on a number of fields in
    the IP and TCP/UDP headers
    Packet filter….
    ………..

    • Attackers can break the security with the help of following


    techniques
    • IP ADDRESS SPOOFING.in this type of attack, attacker send a packet
    to internal network, by setting source
    • Ip address equal to IP address of inside user.
    • Solution: we can defeat the attacker by discarding all packets which
    has the same source address equal to internal address.
    SOURCE ROUTING ATTACKS
    • Here attacker specify the route that is followed by the packet to
    move along the internet so that packet filter can be fooled to
    bypass its normal checks.
    Solution: the solution of this attack is discard all packets that use this
    option.
    APPLICATION GATEWAYS
    • In order to control risks when internal server
    allow connections from internet we use
    application gateway. also known as proxy
    server because it acts like a substitute and
    decides about flow o f information
    GateWay….
    Limitations of firewall
    conclusion
    As we have discussed so far that firewall is very
    important part of computer defense against
    viruses, spyware, Trojans and other malwares
    and also between direct malicious attacks from
    outside and outside of network. A good firewall
    is the one that provide full protection of
    network without effecting the speed of our
    computer and our network access. In order to
    provide security, one should keep following
    things in mind
    ………..

    • We should never install any software from


    suspicious sources. Always download from the
    respected sites available on internet. Use a
    firewall to monitor all data or information that
    we want to exchange over the internet. On
    every computer a firewall software must be
    installed else it will only take one PC to
    become infected and very fast it will effect the
    all computers available on that network.

    Vous aimerez peut-être aussi