Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hafez Barghouthi. Model for Network Access Security (our concern) Patrick BoursAuthentication Course 2007/20082.

Published byEvan Tate Modified over 8 years ago

Similar presentations

Presentation on theme: "Hafez Barghouthi. Model for Network Access Security (our concern) Patrick BoursAuthentication Course 2007/20082."— Presentation transcript:

1 Hafez Barghouthi

2 Model for Network Access Security (our concern) Patrick BoursAuthentication Course 2007/20082

3 Definition  "Firewall is an information technology security device which is configured to permit, deny or proxy data connections set and configured by the organization's security policy. Firewall can either be hardware or software based. http://en.wikipedia.org/wiki/firewall_(networking). 3

4 In our simple words-1  firewall is a separator between a trusted network area (your company local area network (LAN)) and the UN trusted network area (internet).so it is installed in a point where you protected internal network connects to the internet.  Note:We talk about internet firewall not intranet firewall (within the same site) 4

5 In a simple picture Patrick BoursAuthentication Course 2007/20085

6 Firewall Types  Packet filters  Stateful packet filters  Circuit level proxies  Application level proxies  Network address Translator(NAT).  We will talk about 1,4. 6

7 Packet filters  The packet filter firewall depends on allowing or blocking packets usually while routing them from one network to another.  set of rules that specify what types of packets to allow and what types of packets to block. 7

8 Filtering depends on what  IP src. and dest. address. restrict which internal network machines have access to the internet and vise versa depending on the possible range of IP addresses.  TCP or UDP src. and dest. port limit external access to a specific internal services or vise versa. example mail service SMTP uses TCP port number 25. 8

9 Screening router 9

10 Advantages  Widely available in many hardware and software products.  Easy to install.  Packet filters make use of current network routers. Therefore implementing packet filter is less complicated than other firewall approaches.  Support high speed with simple network condition. 10

11 Disadvantages  Packet filters make decisions based on individual packet and not on the context of traffic. This will not provide good security condition.  Creating complex access rules with packet filters can be difficult.  With packet filtering users connect directly from network to network. Direct connection leaves data susceptible to exposure. Hacker can use packet- sniffer to access information such as an external host sniffer can use an internal IP address to access the internal network. 11

12 proxies  Instead of working on network and transport layer, proxy services work on the application protocol layer.  It plays as an intermediate blocks between the internal user and the service on the internet (indirect connection).  The major benefit of this approach is called Transparency which means that the proxy server (firewall) presents the illusion that user (internal client) is dealing directly with a real server (external) and the proxy also presents the illusion that the real server is dealing directly with a user on the internal network. 12

13 Dual Homed host proxy 13

14 Advantages  Transparency  Filtering based on content.  Much better in virus detection than packet Filtering.  ex: A mail proxy could filter viruses,spams and worms 14

15 Disadvantages  Cost is higher and performance is lower.  You need a proxy server for each service you want to protect.  Limitation of proxy services (Not available for every service) for example no proxy server available for any of the new audio and video streaming service [3]. 15

16 In real life  In real firewalls to use a combination between firewall technologies in order to build a reliable firewall and getting the advantages of more than one technique.  Examples Combination of packet filtering with proxy services. Perimeter security approach. Combination of packet filtering with Network address translator 16

17 Perimeter Networks(DMZ) 17

18 Firewall policies-1  Permissive policies :allow all but block certain dangerous service  Restrictive policies: prevent all but allow only traffic to meet a useful purpose http, pop3,SSH 18

19 Rules  Firewall rules can be as following: Allow from internal network to internet:http,ftp,SSH,DNS Allow from anywhere to mail server smtp only. Allow from mail server to internet smtp,DNS. Allow from inside to mail server smtp,pop3. Allow reply packets. Block everything else. 19

20 Limitiations  Firewall can't protect against viruses so having a firewall doesn't mean that you don't need any an antivirus program such as MacAfee antivirus or Norton antivirus.  Firewall can't protect against all the software vulnerabilities such as SQL injection. This type of attack is difficult to detect at the network level.[4]  Firewall can't protect against insider threat because firewall is considered as an external defender protection (the inside from the outside) but if the attacker is behind you (on your internal network) firewall can't do anything.  A lot of configuration need to set up a firewall many people have firewalls that are in the end not effective this is because they are not configure the firewall properly. 20

21 solutions  Intrusion detection and prevention  Software security  Database security  Again cryptology to provide end to end solution.  Personal firewalls to provide end to end security. 21

22 References. [1] Elizabeth D. Zwicky, Simon Cooper and D. Brent Chapman: 'Building Internet Firewalls', O'Reilly and Associates 2000: Second Edition. [2] S D Hubbard and J C Sager: 'Fire walling the net', BT TechnolJ, 15, No2, pp 94-106 (April 1997). [3] Rudkin S et al: ‘Real time applications on the Internet’, BTTechnol 15, No 2, pp 208—224 (April 1997). [4] Stephen D. Wolthusen: 'SQL injection', lecture slides of session 5, http://www.hig.no/imt/file.php?id=1192. [5] Firewall(networking)',http://en.wikipedia.org/wiki/firewall_( networking). 22

Download ppt "Hafez Barghouthi. Model for Network Access Security (our concern) Patrick BoursAuthentication Course 2007/20082."

Similar presentations

Network Security Essentials Chapter 11

Network Security Essentials Chapter 11
Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
IUT– Network Security Course 1 Network Security Firewalls.

IUT– Network Security Course 1 Network Security Firewalls.
FIREWALLS Chapter 11.

FIREWALLS Chapter 11.
Firewalls Dr.P.V.Lakshmi Information Technology GIT,GITAM University

Firewalls Dr.P.V.Lakshmi Information Technology GIT,GITAM University
Personal Info 1 Prepared by: Mr. NHEAN Sophan  Presenter: Mr. NHEAN Sophan  Position: Desktop Support  Company: Khalibre Co,. Ltd 

Personal Info 1 Prepared by: Mr. NHEAN Sophan  Presenter: Mr. NHEAN Sophan  Position: Desktop Support  Company: Khalibre Co,. Ltd 
FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.
Security Firewall Firewall design principle. Firewall Characteristics.

Security Firewall Firewall design principle. Firewall Characteristics.
How (not) to use your firewall Jurjen N.E. Bos Information Security Consultant.

How (not) to use your firewall Jurjen N.E. Bos Information Security Consultant.
Access Control for Networks Problems: –Enforce an access control policy Allow trust relationships among machines –Protect local internet from outsiders.

Access Control for Networks Problems: –Enforce an access control policy Allow trust relationships among machines –Protect local internet from outsiders.
Firewall Security Chapter 8. Perimeter Security Devices Network devices that form the core of perimeter security include –Routers –Proxy servers –Firewalls.

Firewall Security Chapter 8. Perimeter Security Devices Network devices that form the core of perimeter security include –Routers –Proxy servers –Firewalls.
Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.
Firewalls Presented by: Sarah Castro Karen Correa Kelley Gates.

Firewalls Presented by: Sarah Castro Karen Correa Kelley Gates.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
1 Lecture 20: Firewalls motivation ingredients –packet filters –application gateways –bastion hosts and DMZ example firewall design using firewalls – virtual.

1 Lecture 20: Firewalls motivation ingredients –packet filters –application gateways –bastion hosts and DMZ example firewall design using firewalls – virtual.
FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.
Firewalls CS432. Overview  What are firewalls?  Types of firewalls Packet filtering firewalls Packet filtering firewalls Sateful firewalls Sateful firewalls.

Firewalls CS432. Overview  What are firewalls?  Types of firewalls Packet filtering firewalls Packet filtering firewalls Sateful firewalls Sateful firewalls.

Similar presentations

Ads by Google