FIREWALLS
EARLIEST FIREWALLS
Copyright UTS Network Security 2008-2010
2
?
WHAT ARE WE DEALING
WITH?
Data Stream on a wire – ‘data in ight’
Sequence of bits
Relayed from machine to machine
Will assume using Ethernet
Copyright UTS Network Security 2008-2010
3
Firewall Architectures
Packet Filter
Application Gateway/Proxy
Stateful Inspection
Firewall Deployment Methods
Choke Router
Bastion Host
DMZ
Platform Selection
Proprietary, Open Source
UNIX vs Windows
General Purpose Platform vs Appliance
Copyright UTS Network Security 2008-2010
4
Faculty of Information
Technology
Topics
TYPES OF FIREWALL
Packet Filter
Proxy Server
Stateful Inspection
Internet
F irew all
Internal Desktop
Intern al S erve r Inte rnal D esk top
In te rn al
N etw o rk
D M Z
W e b S erver FTP S erver
Copyright UTS Network Security 2008-2010
5
评论0