Advantages and Disadvantage of Packet Filtering firewall

 

Advantages

• One screening router can help protect entire network

One key advantage of packet filtering is that a single, strategically placed filter can help protect an entire network. If there is only one router that  connects organization site to the Internet, then it provides great advantage on network security, regardless of the size of the site by doing packet filtering on that router.

 

•  Packet filtering doesn’t require user knowledge or cooperation

Packet filtering does not require any custom software or configuration of client machines. When a packet filtering router let a packet through, the router is indistinguishable from a normal router. This transparency means that the packet filtering can be done without the cooperation and often without the knowledge of users.

 Disadvantages

•  Current filtering tools are not perfect

 The rules of packet filtering are hard to configure and once configured, they seem hard to test. The packet filtering capabilities of many products are incomplete and the implementation of certain types of filters is almost impossible. Packet filtering packages may have bugs in them that might fail packet filtering implementation. This may allow few packets to pass into private network without proper checking.

 

•  Some rules can’t readily be enforced by normal packet filtering routers

The information available to packet filtering router is limited. Packets have information about their host but they cannot tell about the user. So, generally no restrictions can be enforced on particular users. Restriction can be enforced on the users who could access the ports through high level protocols. These protocols ensure that no other user is accessing that port. But that kind of control can easily be subverted.

Posted Date: 9/13/2012 5:58:35 AM | Location : United States

Ask an Expert

Related Discussions:- Advantages and disadvantage of packet filtering firewall, Assignment Help, Ask Question on Advantages and disadvantage of packet filtering firewall, Get Answer, Expert's Help, Advantages and disadvantage of packet filtering firewall Discussions

Write discussion on Advantages and disadvantage of packet filtering firewall
Your posts are moderated

Write your message here..

Related Questions

Describe the two possible configurations for 3des, QUESTION (a) Describ... QUESTION (a) Describe the two possible configurations for 3DES (b) What is the main disadvantage of 3DES? (c) Why are most modern symmetric algorithm block ciphers? (d

ISDN, Explain the architecture of ISDN.....? Explain the architecture of ISDN.....?

Packets and frames, PACKETS: Packet is a generic word that define to sma... PACKETS: Packet is a generic word that define to small code of data. Packet have different format. Each hardware needs different packet format.  FRAME: A hardware frame or

Packet filtering firewall, Packet Filtering Firewall Packet filtering i... Packet Filtering Firewall Packet filtering is a network security mechanism that works by controlling what data can flow in and out of the network. The basic device that interco

Carrier sense multiple access (csma), CARRIER  SENSE MULTIPLE ACCESS (CSMA... CARRIER  SENSE MULTIPLE ACCESS (CSMA) There is no central access management when computers transfer on Ethernet. For this solution the Ethernet employs CSMA to coordinate tran

Distinguish between authorization and authentication, Question : (a) D... Question : (a) Distinguish between authorization and authentication. (b) SSO (Single Sign On) implies a user logs in once and can access resources for a defined period of

Improving domain blacklisting - spam mail, Improving domain blacklisting: ... Improving domain blacklisting: Current domain blacklisting techniques are not very effective as spammers keep replacing blacklisted domains with newly registered domains. Also

Describe the procedure known as byte stuffing, Question: (a) For the b... Question: (a) For the bit stream 010011, sketch the waveforms for each of the code indicated. Assume the following: the signal level for the previous bit for NRZI was a 1

Locality of reference , LOCALITY OF REFERENCE PRINCIPLE:  Principle of... LOCALITY OF REFERENCE PRINCIPLE:  Principle of "Locality of Reference" use to predict computer interaction patterns. There are two patterns shown as follows: a) Spatial loca

Management of classified data-risk management, Management of Classified Dat... Management of Classified Data Management of classified data comprises of its storage, distribution, portability, and destruction of classified data. All information which is not