Presentation is loading. Please wait.

Presentation is loading. Please wait.

1.1 1 Purpose of firewall : –Control access to or from a protected network; –Implements network access policy connections pass through firewall and are.

Published byJohnathan King Modified over 8 years ago

Similar presentations

Presentation on theme: "1.1 1 Purpose of firewall : –Control access to or from a protected network; –Implements network access policy connections pass through firewall and are."— Presentation transcript:

1 1.1 1 Purpose of firewall : –Control access to or from a protected network; –Implements network access policy connections pass through firewall and are examined / evaluated. May be implemented in : –router; PC; host; collection of hosts. Normally located at a high-level gateway –e.g. site’s Internet connection Firewall system AKA “Bastion Host” The Firewall Concept

2 1.2 2 Policy Intranet (trusted) The Firewall Concept (cont.) Internet (hostile)

3 1.3 3 The need for Firewalls Traditionally rely on security of individual hosts As number of hosts increases : »less manageable; »more chance of administrative mistakes / lapses. reduced likelihood of uniform security Firewall helps to increase overall security of the internal network

4 1.4 4 Firewall Advantages Protection for vulnerable services Controlled access to site systems Concentrated security Enhance privacy (hide internal network structure) Logging and statistics on network use Security policy enforcement

5 1.5 Firewall Disadvantages Restricted access to desirable services –likely to block services that users want (e.g. TELNET, FTP etc.) Implementation may demand major restructuring –topology may not lend itself to firewall –cost of introducing firewall may exceed cost of vulnerabilities –alternative solutions may be appropriate

6 1.6 Firewall Disadvantages (cont) Potential for back doors –e.g. unrestricted modem access –administration should ensure no means to bypass firewall Little protection from insider attacks –firewall designed to prevent outsiders from accessing sensitive data –many attacks would not need to use the firewall

7 1.7 Firewall Disadvantages (cont.) Viruses –May be downloaded in program files or incoming emails Throughput –Firewall represent a potential bottleneck as all connections must pass through it “All eggs in one basket” –security concentrated in one spot –compromise could be disastrous

8 1.8 8 Firewall Hardware Routers –Many come equipped with basic packet-filtering capabilities; others come with fully-functioning firewalls Appliances (firewall products) –Perform same basic tasks (packet filtering, application-level gateways, and logging)

9 1.9 9 Software-Only Packages Many free firewall tools on the Internet –Some also run on a free operating system Personal/small business firewalls –Located between Ethernet adapter driver of machine on which they are installed and the TCP/IP stack, where they inspect traffic between the driver and the stack –Considered lightweight protection Enterprise firewall systems –Full-featured, full-powered packages

10 1.10 10 Software-Only Packages Advantages –Convenient, simple, and inexpensive Drawbacks –Personal/SME product logging capabilities not as robust as commercial products –Usually no way to monitor firewall in real-time –Most guard only against IP threats –Some don’t do outbound connection blocking –Some are inconvenient to configure

Download ppt "1.1 1 Purpose of firewall : –Control access to or from a protected network; –Implements network access policy connections pass through firewall and are."

Similar presentations

Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
Firewalls 2014.04.07 Uyanga Tserengombo

Firewalls Uyanga Tserengombo
FIREWALLS Chapter 11.

FIREWALLS Chapter 11.
Firewalls Dr.P.V.Lakshmi Information Technology GIT,GITAM University

Firewalls Dr.P.V.Lakshmi Information Technology GIT,GITAM University
FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.
Winter 20021 CMPE 155 Week 7. Winter 20022 Assignment 6: Firewalls What is a firewall? –Security at the network level. Wide-area network access makes.

Winter CMPE 155 Week 7. Winter Assignment 6: Firewalls What is a firewall? –Security at the network level. Wide-area network access makes.
Fall 2008CS 334: Computer Security1 Firewalls Special Thanks to our friends at The Blekinge Institute of Technology, Sweden for providing the basis for.

Fall 2008CS 334: Computer Security1 Firewalls Special Thanks to our friends at The Blekinge Institute of Technology, Sweden for providing the basis for.
CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.

CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.
Kittiphan Techakittiroj (21/05/58 10:00 น. 21/05/58 10:00 น. 21/05/58 10:00 น.) Firewall Kittiphan Techakittiroj

Kittiphan Techakittiroj (21/05/58 10:00 น. 21/05/58 10:00 น. 21/05/58 10:00 น.) Firewall Kittiphan Techakittiroj
Lecture 14 Firewalls modified from slides of Lawrie Brown.

Lecture 14 Firewalls modified from slides of Lawrie Brown.
Security Firewall Firewall design principle. Firewall Characteristics.

Security Firewall Firewall design principle. Firewall Characteristics.
Firewalling Techniques Prabhaker Mateti. ACK Not linux specific Not linux specific Some figures are from 3com Some figures are from 3com.

Firewalling Techniques Prabhaker Mateti. ACK Not linux specific Not linux specific Some figures are from 3com Some figures are from 3com.
—On War, Carl Von Clausewitz

—On War, Carl Von Clausewitz
Chapter 11 Firewalls.

Chapter 11 Firewalls.
Firewall COSC 513 By Lerraj Khommeteeyuthakan. Introduction to Firewall zA method for keeping a network secure zFirewall is an approach to security zHelps.

Firewall COSC 513 By Lerraj Khommeteeyuthakan. Introduction to Firewall zA method for keeping a network secure zFirewall is an approach to security zHelps.
Access Control for Networks Problems: –Enforce an access control policy Allow trust relationships among machines –Protect local internet from outsiders.

Access Control for Networks Problems: –Enforce an access control policy Allow trust relationships among machines –Protect local internet from outsiders.
Firewall Planning and Design Chapter 1. Learning Objectives Understand the misconceptions about firewalls Realize that a firewall is dependent on an effective.

Firewall Planning and Design Chapter 1. Learning Objectives Understand the misconceptions about firewalls Realize that a firewall is dependent on an effective.
5/4/01EMTM 5531 EMTM 553: E-commerce Systems Lecture 7b: Firewalls Insup Lee Department of Computer and Information Science University of Pennsylvania.

5/4/01EMTM 5531 EMTM 553: E-commerce Systems Lecture 7b: Firewalls Insup Lee Department of Computer and Information Science University of Pennsylvania.
Chapter 10 Firewalls. Introduction seen evolution of information systems now everyone want to be on the Internet and to interconnect networks has persistent.

Chapter 10 Firewalls. Introduction seen evolution of information systems now everyone want to be on the Internet and to interconnect networks has persistent.

Similar presentations

Ads by Google