Advantages and Disadvantage of Packet Filtering firewall

 

Advantages

• One screening router can help protect entire network

One key advantage of packet filtering is that a single, strategically placed filter can help protect an entire network. If there is only one router that  connects organization site to the Internet, then it provides great advantage on network security, regardless of the size of the site by doing packet filtering on that router.

 

•  Packet filtering doesn’t require user knowledge or cooperation

Packet filtering does not require any custom software or configuration of client machines. When a packet filtering router let a packet through, the router is indistinguishable from a normal router. This transparency means that the packet filtering can be done without the cooperation and often without the knowledge of users.

 Disadvantages

•  Current filtering tools are not perfect

 The rules of packet filtering are hard to configure and once configured, they seem hard to test. The packet filtering capabilities of many products are incomplete and the implementation of certain types of filters is almost impossible. Packet filtering packages may have bugs in them that might fail packet filtering implementation. This may allow few packets to pass into private network without proper checking.

 

•  Some rules can’t readily be enforced by normal packet filtering routers

The information available to packet filtering router is limited. Packets have information about their host but they cannot tell about the user. So, generally no restrictions can be enforced on particular users. Restriction can be enforced on the users who could access the ports through high level protocols. These protocols ensure that no other user is accessing that port. But that kind of control can easily be subverted.

Posted Date: 9/13/2012 5:58:35 AM | Location : United States

Ask an Expert

Related Discussions:- Advantages and disadvantage of packet filtering firewall, Assignment Help, Ask Question on Advantages and disadvantage of packet filtering firewall, Get Answer, Expert's Help, Advantages and disadvantage of packet filtering firewall Discussions

Write discussion on Advantages and disadvantage of packet filtering firewall
Your posts are moderated

Write your message here..

Related Questions

Draw the waveform for an asynchronous transmission, Question: (a) Draw... Question: (a) Draw the waveform for an asynchronous transmission with the following specifications: Character "H", one even parity bit, one start bit, one stop bit, and a b

Emulation, In this section, you should create a program that emulates a GBN... In this section, you should create a program that emulates a GBN node. Two GBN nodes will be running to send packets to each other through the UDP protocol. For emulation purpose,

Frame format and error detection, FRAME FORMAT AND ERROR DETECTION The... FRAME FORMAT AND ERROR DETECTION The changed frame format also adds CRC. If there is an error happened in frame, then it typically causes receiver to removed frame. The frame

Describe how ethernet deals with collisions, Problem (a) The IEEE 802 seri... Problem (a) The IEEE 802 series of standards describe both the Physical and Data Link layers of their respective technologies. Two important standards are 802.3 and 802.5, respect

Question, Describe the process a proposed standard goes through to become a... Describe the process a proposed standard goes through to become an RFC

Develop firewall rules, Question requires you to develop firewall rules bas... Question requires you to develop firewall rules based on a fictitious organisation. Scenario: You work for a security-conscious company, xC-Cure, who develop encryption tec

What is data spoliation, QUESTION (a) What do you meant by data spoli... QUESTION (a) What do you meant by data spoliation? (b) Justify the following statement: "Disk imaging differs from creating a standard backup of disk." (c) Why do yo

E-commerce, briefly expslain type of e-commerce briefly expslain type of e-commerce

Address masks, ADDRESS MASKS To identify receiver, network apply addre... ADDRESS MASKS To identify receiver, network apply address mask to receiver address and calculate to network address in routing table. It can use Boolean 'and' to calculate the

Introduction to network protocol, In this assignment, you are required to e... In this assignment, you are required to emulate the operation of a link layer and network layer protocols in a small computer network. Your program should behave like a single node