u9.3 Firewall Types P3. Application Level Proxies

Descripción

Masters Degree Network Security Mapa Mental sobre u9.3 Firewall Types P3. Application Level Proxies, creado por Craig Parker el 02/03/2014.
Craig Parker
Mapa Mental por Craig Parker, actualizado hace más de 1 año
Craig Parker
Creado por Craig Parker hace más de 10 años
44
1

Resumen del Recurso

u9.3 Firewall Types P3. Application Level Proxies
  1. Most complex of the 4 types
    1. Does more processing and has more features to support operations on typical networks
      1. provides the most detailed level of control of traffic
        1. checks for correct association of services with port numbers
    2. Do not route packets between source and destination
      1. Always repackage the contents of incoming packets into new packets that are generated and sent out from the proxy
      2. The distinction of an application-level proxy firewall is that it actually contains a complete OSI layer 7 client and server implementation for every protocol it can support through the firewall.
        1. Normally a machine would be just a client or a server – an application-level proxy firewall has to be both.
          1. This means the security can be very fine grained, more than for any other type of FW
            1. For example a stateful packet might allow HTTP & Block FTP
              1. an ALP can allow GTTP Get but block HTTP Post
                1. Or allow FTP Get but block exe from being downloaded
              2. Provides a greater level of control at a price
                1. more processing = lowe performance
            2. it must contain this functionality for every protocol it may need to send between clients & servers on opposite sides of the FW
              1. the possibilities here mean that ALP end up being extremely complex
            Mostrar resumen completo Ocultar resumen completo

            Similar

            CCNA Security 210-260 IINS - Exam 1
            Mike M
            CCNA Security 210-260 IINS - Exam 2
            Mike M
            SY0-401 Part 1 (50 questions)
            desideri
            CCNA Security 210-260 IINS - Exam 1
            Ricardo Nuñez
            CCNA Security 210-260 IINS - Exam 3
            irvin pastora
            1.3 Network and Security Components
            DJ Perrone
            U1. OSI 7 Layer Reference Model
            Craig Parker
            Types of Attacks
            River L.
            CCNA Security 210-260 IINS - Exam 1
            irvin pastora
            Network Security Vocabulary
            Shantal K Green
            Maximizing Efficiency: A Comprehensive Guide to Cloud Services for Your Business
            Andrew James