Scribd
Upload
99 views30 pages

Firewall 2012 MARCH

Firewalls are hardware or software used to prevent unauthorized access to private networks and computers from the internet or other untrusted networks. Hardware firewalls protect entire networks while software firewalls protect individual computers. Software firewalls inspect packets of data entering and leaving the computer to determine if they should be allowed or blocked based on configured firewall rules. Firewalls can block unwanted traffic and ads but cannot prevent all viruses and require periodic updates to maintain security. Both Windows and Mac operating systems include built-in software firewalls that can be enabled to help protect the computer.

Uploaded by

Arshpreet Singh
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
99 views30 pages

Firewall 2012 MARCH

Firewalls are hardware or software used to prevent unauthorized access to private networks and computers from the internet or other untrusted networks. Hardware firewalls protect entire networks while software firewalls protect individual computers. Software firewalls inspect packets of data entering and leaving the computer to determine if they should be allowed or blocked based on configured firewall rules. Firewalls can block unwanted traffic and ads but cannot prevent all viruses and require periodic updates to maintain security. Both Windows and Mac operating systems include built-in software firewalls that can be enabled to help protect the computer.

Uploaded by

Arshpreet Singh
Copyright
© Attribution Non-Commercial (BY-NC)
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
You are on page 1/ 30

Firewalls

By: Name :- Arshpreet Singh Section: - RK22H1B30 Reg No. 11107537

Agenda
Firewall Basics for the Beginning User Firewall Offering Case Study Desktop Firewall Software Hardware and software Firewall Questions and Answers

What is a Firewall?
A firewall is hardware, software, or a combination of both that is used to prevent unauthorized programs or Internet users from accessing a private network and/or a single computer

Internet

A firewall :- Acts as a security


gateway between two networks
Usually between trusted and untrusted networks (such as between a corporate network and the Internet)

Corporate Network Gateway

Corporate Site

Hardware vs. Software Firewalls


Hardware Firewalls
Protect an entire network Implemented on the router level Usually more expensive, harder to configure

Software Firewalls
Protect a single computer Usually less expensive, easier to configure

How does a software firewall work?


Inspects each individual packet of data as it arrives at either side of the firewall Inbound to or outbound from your computer Determines whether it should be allowed to pass through or if it should be blocked

Firewall Rules
Allow traffic that flows automatically because it has been deemed as safe (Ex. Meeting Maker, Eudora, etc.) Block traffic that is blocked because it has been deemed dangerous to your computer Ask asks the user whether or not the traffic is allowed to pass through

What a personal firewall can do


Stop hackers from accessing your computer Protects your personal information Blocks pop up ads and certain cookies Determines which programs can access the Internet

What a personal firewall cannot do


Cannot prevent e-mail viruses
Only an antivirus product with updated definitions can prevent e-mail viruses

After setting it initially, you can forget about it


The firewall will require periodic updates to the rulesets and the software itself

Considerations when using personal firewall software


If you did not initialize an action and your firewall picks up something, you should most likely deny it and investigate it Its a learning process If you notice you cannot do something you did prior to the installation, there is a good chance it might be because of your firewall

Classification of Firewall
Characterized by protocol level it controls in Packet filtering Circuit gateways Application gateways Combination of above is dynamic packet filter

Firewall Gateways
Firewall runs set of proxy programs
Proxies filter incoming, outgoing packets All incoming traffic directed to firewall All outgoing traffic appears to come from firewall

Application-Level Filtering
Has full access to protocol
user requests service from proxy proxy validates request as legal then actions request and returns result to user

Need separate proxies for each service


E.g., SMTP (E-Mail) NNTP (Net news) DNS (Domain Name System) NTP (Network Time Protocol)

Firewalls - Application Level Gateway (or Proxy)

App-level Firewall Architecture


Telnet proxy
Telnet daemon FTP proxy

SMTP proxy
SMTP daemon

FTP daemon

Network Connection

Daemon spawns proxy when communication detected

Enforce policy for specific protocols


E.g., Virus scanning for SMTP
Need to understand MIME, encoding, Zip archives

Firewall Outlines
Packet filtering Application gateways Circuit gateways Combination of above is dynamic packet filter

Firewalls - Circuit Level Gateway

Screened Host Architecture

Screened Subnet Using Two Routers

Firewalls Arent Perfect?


Useless against attacks from the inside
Evil doer exists on inside Malicious code is executed on an internal machine

Organizations with greater insider threat


Banks and Military

Protection must exist at each layer


Assess risks of threats at every layer

Cannot protect against transfer of all virus infected programs or files


because of huge range of O/S & file types

Windows 7 Firewall
Currently *not* enabled by default Enable under Start -> Control Panel -> Windows firewall Select Local Area Connection Select the Properties button Click the Advanced tab

Windows 7 firewall

Mac OS X firewall
*Not* enabled by default Enable under System Preferences Select Sharing Click Firewall tab Click Start button

Mac OS X firewall

Final Notes
Rule Management Default Allow vs. Default Deny Firewalls do NOT Solve the Entire Problem

Additional Information
Visit the following websites:
http:// www.howstuffworks.com/firewall.htm http:// www.firewall.com/ http://www.it.northwestern.edu/reference/firewall/firewall_strategies_wp.html http://www.juniper.net/netscreen_com.html

THANKS YOU

ANY QUESTION ?

You might also like