What does a
firewall do?
A firewall
examines all traffic routed between the two networks to see if it meets certain
criteria. If it does, it is routed between the networks, otherwise it is
stopped. A firewall filters both inbound and outbound traffic. It can also
manage public access to private networked resources such as host applications.
It can be used to log all attempts to enter the private network and trigger
alarms when hostile or unauthorized entry is attempted. Firewalls can filter
packets based on their source and destination addresses and port numbers. This
is known as address filtering. Firewalls can also filter specific types of
network traffic. This is also known as protocol filtering because the decision
to forward or reject traffic is dependant upon the protocol used, for example
HTTP, ftp or telnet. Firewalls can also filter traffic by packet attribute or
state.
Who needs a
firewall?
Anyone who
is responsible for a private network that is connected to a public network
needs firewall protection. Furthermore, anyone who connects so much as a single
computer to the Internet via modem should have personal firewall software. Many
dial-up Internet users believe that anonymity will protect them. They feel that
no malicious intruder would be motivated to break into their computer. Dial up
users who have been victims of malicious attacks and who have lost entire days
of work, perhaps having to reinstall their operating system, know that this is
not true. Irresponsible pranksters can use automated robots to scan random IP
addresses and attack whenever the opportunity presents itself.
How does a
firewall work?
There are
two access denial methodologies used by firewalls. A firewall may allow all
traffic through unless it meets certain criteria, or it may deny all traffic
unless it meets certain criteria . The type of criteria used to
determine whether traffic should be allowed through varies from one type of
firewall to another. Firewalls may be concerned with the type of traffic, or
with source or destination addresses and ports. They may also use complex rule
bases that analyse the application data to determine if the traffic should be
allowed through. How a firewall determines what traffic to let through depends
on which network layer it operates at.
No comments:
Post a Comment