csce201-lect7.a

csce201-lect7.a - CSCE201 CSCE201 WindowsXP Firewalls...

Info iconThis preview shows pages 1–11. Sign up to view the full content.

View Full Document Right Arrow Icon
CSCE 201 CSCE 201 Windows XP Windows XP Firewalls  Firewalls  Fall 2010 Fall 2010
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Reading Reading Windows XP help and Support: search on “Firewall” Tony Bradley, CISSP-ISSAP , Windows XP SP2 Firewall, Is It Sufficient To Replace 3rd-party Personal Firewalls?, About.com CSCE 201 - Farkas 2
Background image of page 2
CSCE 201 - Farkas 3 Traffic Control – Firewall Traffic Control – Firewall Brick wall placed between apartments to prevent the spread of fire from one apartment to the next Single, narrow checkpoint placed between two or more networks where security and audit can be imposed on traffic which passes through it
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
CSCE 201 - Farkas 4 Firewall Firewall Hardware device or a software application and generally is placed at the perimeter of the network Private Network External Network Firewall
Background image of page 4
CSCE 201 - Farkas 5 Firewall Objectives Firewall Objectives Act as the gatekeeper for all incoming and outgoing traffic Private Network Private Network External Network Proprietary data External attacks
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Firewall Rules Firewall Rules Restrict access to certain IP addresses or domain names Block certain types of traffic by blocking the TCP/IP ports they use Four basic approaches: packet-filtering circuit-level gateway proxy server application gateway CSCE 201 - Farkas 6
Background image of page 6
Packet Filter Packet Filter Intercepts all traffic to and from the network Evaluates it against the firewall rules Rules use: source IP address, source port, destination IP address and destination port CSCE 201 - Farkas 7
Background image of page 7

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Circuit-level Gateway Circuit-level Gateway Blocks all incoming traffic to any host but itself Internally: the client machines establish a connection with the circuit-level gateway Outside world: all communication from your internal network seems to originate from the circuit-level gateway CSCE 201 - Farkas 8
Background image of page 8
Proxy Server Proxy Server Boosts the performance of the network Hide the internal network topology (all communications appear to originate from the proxy server itself) Caches pages that have been requested to improve speed Filters traffic based on traffic info, ports and content Application Gateways: application specific proxy server CSCE 201 - Farkas 9
Background image of page 9

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Comparing Firewalls Comparing Firewalls Filtering capability: Packet filters: packet header information only Application gateways: packet header and data content, application specific info Speed of detection
Background image of page 10
Image of page 11
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 30

csce201-lect7.a - CSCE201 CSCE201 WindowsXP Firewalls...

This preview shows document pages 1 - 11. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online