|
You are here >> Home
>>Computer
and Information security>> Firewalls Firewalls
A firewall can be defined as a system that is designed to prevent unauthorised access to or from a private
network. Firewalls checks all the messages and blocks the messages that do not meet the specified security criteria.
| Network Firewall
The firewall can be thought of as a pair of mechanisms: one which exists to block traffic, and the other which exists to permit traffic.
Some firewalls give more importance on blocking traffic while others
emphasize on permitting traffic. The firewall implements an access control
policy. It's also important to recognize that the firewall's configuration, because it is a mechanism for enforcing policy, imposes its policy on everything behind it. Administrators for firewalls managing the connectivity for a large number of hosts therefore have a heavy responsibility.
|
Why install a firewall
A firewall's purpose is to keep the jerks out of your network while still letting you get your job done.
Many corporations use their firewall systems as a place to store public information about corporate products and services, files to download, bug-fixes, and so forth. Several of these systems have become important parts of the Internet service structure (e.g., UUnet.uu.net, whitehouse.gov, gatekeeper.dec.com) and have reflected well on their organizational sponsors. Note that while this is historically true, most organizations now place public information on a Web server, often protected by a firewall, but not normally on the firewall itself.
Firewall protect from
Firewalls cannot protect information against attacks that
don't go through the firewall. For a firewall to work, it must be a part of a consistent overall organizational security architecture. Firewall policies must be realistic and reflect the level of security in the entire network. For example, a site with top secret or classified data doesn't need a firewall at all: they shouldn't be hooking up to the Internet in the first place, or the systems with the really secret data should be isolated from the rest of the corporate network.
Firewalls can't protect against tunneling over most application protocols to trojaned or poorly written clients. There are no magic bullets and a firewall is not an excuse to not implement software controls on internal networks or ignore host security on servers. Tunneling ``bad'' things over HTTP, SMTP, and other protocols is quite simple and trivially demonstrated. Security isn't ``fire and forget''.
Lastly, firewalls can't protect against bad things being allowed through them. For instance, many Trojan Horses use the Internet Relay Chat (IRC) protocol to allow an attacker to control a compromised internal host from a public IRC server. If you allow any internal system to connect to any external system, then your firewall will provide no protection from this vector of attack.
|
Links
SecurityTracker.com
Information on the latest
security vulnerabilities, free SecurityTracker Alerts, and
customized vulnerability notification services
www.cisco.com
With the rapid growth of interest in the Internet and the
Windows NT operating system, network security has become a
major concern to companies throughout the world. The fact that
the information and tools needed to penetrate the security of
corporate networks are widely available has only increased
that concern.
www.esecurityplanet.com
The
startup employs a policy engine that will help users track
applications during the data-recovery process.
Related Topics on Computer and
Information security
- Software
Vulnerability Control
- Firewall Protection
- Network
Intrusion Detection
- Network Port
Scanning
- Network Tools
passwords
- Types of attacks
- Application
Level Protection
- Systems Protection
- Mail and Security
- Hostile Software
For more topics and tutorials visit -
http://www.comptechdoc.org
|
Browse Categories
|
 Computer And Information Security
CCTV, Surveillance Systems, Equipment & Components
Access Control Components, Equipment And Systems
Alarms, Burglar, Electronic Systems, Equipment & Components
Fire Protection, Detection & Controls
Intrusion Detection
Perimeter Security, Fences, Ballistic
Security & Specialty Services
Security Design Services
Facilities Systems
Miscellaneous
|
| Find
Products for :-
|
| Find
Solutions for:-
|
| Complete
information on security services, guarding services,
investigators, detectives and security systems. We also have a
online directory guide of the companies providing services the
above services in different states of India like Delhi, Mumbai,
Gurgaon, Banglore, Noida etc.
www.securityservicesindia.com
|
| A Directory on Insurance as well as
Insurance related topics updated to the latest. A
total solutions site for your basic to advanced
Insurance needs |
www.insurance4india.com
|
| Want
a loan? Learn the pros and cons for taking a loan and lots of
information for your finance problems.
www.finance4india.com
|
| Plan
a trip to India! Visit the beautiful, culture rich country
having diverse climates, castes, languages and creed. Each
visit will add a new experience in your life, select your tour
and make a trip to India with us
www.visitindia.org.in
|
| |
|
