ch04 introduction to firewalls
TRANSCRIPT
-
8/9/2019 Ch04 Introduction to Firewalls
1/55
Guide to Firewalls and VPNs,
3
rd
Edition
Chapter FourIntroduction to Firewalls
-
8/9/2019 Ch04 Introduction to Firewalls
2/55
Guide to Firewalls and VPNs, 3rdEdition
Overview
Identify common misconceptions about firewalls
Eplain w!y a firewall is dependent on an effective
security policy
"nderstand w!at a firewall does
#escribe t!e types of firewall protection
$eco%ni&e t!e limitations of firewalls
'
-
8/9/2019 Ch04 Introduction to Firewalls
3/55
Guide to Firewalls and VPNs, 3rdEdition
Introduction
Firewalls and related tec!nical controls are a
fundamental security tool
Overview of t!e issues involved in plannin% and
desi%nin% firewalls Eac! individual firewall
( )ombination of software and !ardware components
3
-
8/9/2019 Ch04 Introduction to Firewalls
4/55
Guide to Firewalls and VPNs, 3rdEdition
Firewalls Eplained
Firewall
(*nyt!in% t!at can filter t!e transmission of pac+ets of
di%ital information
(*s t!ey attempt to pass t!rou%! an interface betweennetwor+s
asic security functions-
( Pac+et filterin%
*llow or deny pac+ets based on rules
(*pplication proy
Provide networ+ services to users w!ile bloc+in% direct
connections to t!em
.
-
8/9/2019 Ch04 Introduction to Firewalls
5/55
Guide to Firewalls and VPNs, 3rdEdition
/isconceptions about Firewalls
Firewalls
( Permit aut!ori&ed traffic to pass t!rou%! w!ile
bloc+in% unaut!ori&ed and unwanted traffic
( Need constant maintenance to +eep up wit! t!elatest security t!reats
( 0or+ best as part of a multilayered approac! to
networ+ security
1
-
8/9/2019 Ch04 Introduction to Firewalls
6/55
Guide to Firewalls and VPNs, 3rdEdition
*n *nalo%y- Office 2ower ecurity
Guard
Firewall performs same types of functions as does
a security %uard at a c!ec+point
( /onitors entry and eit points
( cans for viruses and repairin% infected files beforet!ey invade t!e networ+
( )an be confi%ured to send out alert messa%es and
notify staff of brea+4ins or if viruses are detected
5
-
8/9/2019 Ch04 Introduction to Firewalls
7/55
Guide to Firewalls and VPNs, 3rdEdition
Firewall ecurity Features
*dvanced security functions offered by some
firewalls
( 6o%%in%
( VPN(*ut!entication
( !ieldin% !osts inside t!e networ+ so t!at attac+ers
cannot identify t!em and use t!em as sta%in% areas
for sustained attac+s( )ac!in% data
( Filterin% content t!at is considered inappropriate
7
-
8/9/2019 Ch04 Introduction to Firewalls
8/55
Guide to Firewalls and VPNs, 3rdEdition
Firewall Networ+ Perimeter ecurity
Perimeter
( oundary between two &ones of trust
( lurred by
Etranet VPN
/obile devices
enefit of locatin% firewall at t!e perimeter
( et up a c!ec+point w!ere you can bloc+ viruses
and infected e4mail messa%es before t!ey %et inside
8
-
8/9/2019 Ch04 Introduction to Firewalls
9/55
Guide to Firewalls and VPNs, 3rdEdition
Firewall Networ+ Perimeter ecurity
9cont:d;