Application gateways / firewall-information security, Computer Network Security

Application Gateways / firewall

The application level firewall is installed on a dedicated computer; also called as a proxy server. These servers can store the recently accessed pages in their cache and called as cache servers. As proxy server is placed in unsecured area of the network (for example DMZ), it is exposed to higher levels of risk from unreliable networks. Additional filtering routers can be implemented behind proxy server, further protecting internal systems. The disadvantage is they are characteristically restricted to a single application, as they work at application layer. Figure given below illustrates the different types of Firewalls which is compared to OSI model

 

 

255_Application Gateways -firewall.png

 

 

 Circuit Gateways

The circuit gateway firewall operates at transport layer. Filtering firewalls, do not normally look at data traffic flowing between two networks, but it prevent direct connections between one network and the other. This is can be accomplished by creating tunnels connecting specific processes or systems on each side of firewall, and allows authorized traffic in the tunnels.

 MAC Layer Firewalls

MAC layer firewalls which is designed to operate at media access control layer of OSI network model. This gives the ability to consider specific host computer’s identity in the filtering decisions of it. The MAC addresses of specific host computers are linked to access control list (ACL) entries that identify specific types of packets which can be sent to each host; all other traffic is blocked.

 Hybrid Firewalls


Hybrid Firewalls combine elements of other types of firewalls; that is, elements of packet filtering and proxy services, or of packet filtering and circuit gateways. On the other hand, it may consist of 2 separate firewall devices; each is a separate firewall system, but is connected to work in tandem. Without replacing the existing firewalls completely, an organization can make a security improvement, from this approach.

Posted Date: 10/9/2012 3:36:25 AM | Location : United States







Related Discussions:- Application gateways / firewall-information security, Assignment Help, Ask Question on Application gateways / firewall-information security, Get Answer, Expert's Help, Application gateways / firewall-information security Discussions

Write discussion on Application gateways / firewall-information security
Your posts are moderated
Related Questions
Problem (a) As a forensic investigator, you are needed to trace the source of an email. It is suspected that the email header has been forged. Show how you would proceed to

Cost Benefit Analysis (CBA) The common approach for information security controls is economic feasibility of implementation. CBA is begun by evaluating the worth of assets which

Border Gateway Protocol It is a protocol needed to advertise the set of networks that can be achieved within an autonomous machine. BGP activates this information to be shared

QUESTION (a) A convex flow problem is a non linear network flow problem. Explain how a convex flow problem could be transformed into a Minimum Cost Flow problem. (b) Exp

Electronic Mail: Electronic mail which is famous as e-mail, as it is known to its number of users, has been around for more than two decades. Before 1990, it was mainly used in

QUESTION (a) Consider the following authentication options A. Using password B. Using pin and fingerprint Which option A or B provides stronger security and why? (b

In BUS topology every computer is directly connected to primary network cable in a single way. Bus networks are the easiest way to connect multiple users, but can have problems

What do you understand by the DNS? Explain the usage of the resource rec or ds. Domain Name System is described below: The Domain Name Service (DNS) is the hierarchi

Information System Security 1. Write about: a. Potential Risks to Information Systems b. Factors to be addressed for making information systems more secure 2. Write about t

Encode the following plaintext, using the Caesar cipher:             LORD OF THE RINGS b) The following ciphertext              jw njbh lxmn cx kanjt has been encoded usi