Chapter 6 Review Questions/Answers
Firewall regulates data between an untrusted and trusted networks. The data enters from an untrusted network to a firewall and the firewall filters the data, preventing suspicion data from entering the network. Show
A TCP send a data packet and then reports back to the sender about the status of the transfer while UDP is more interested in speed and does not report back to the sender. I don’t think so that there would be any specific transaction usually involving both TCP and UDP. I would personally prefer TCP.
A packet filtering firewall checks packets for the allowed destination, source and port address information. An application layer firewall may be called a proxy server because it utilizes some software application that act as proxies.
Static filtering has are installed with specific rules while dynamic filtering is perceived a more secure as they are intelligent and can amend the rules by themselves.
Stateful inspection keeps an eye on external and internal connections to a network. It keeps track of the system by keeping a table of the states.
A circuit gateway operates at the transport layer level. It is used to prevent direct connection between two different networks.
A cache server stores frequently used web pages and returns them on user request from the local computer. It saves internet bandwidth for organization and provides a quick loading of the cached pages.
These firewalls include packet filtering, dynamic filtering, static filtering and stateful inspection filtering. They work on transport level and prevent the network from external threats.
A hybrid firewall is that kind of firewall that is used to combine other kinds of firewall like packet filtering firewall and proxy servers firewalls.
Five generation for firewall technology are, static packet filtering, application level firewalls, inspection firewalls, dynamic packet filtering firewalls and kernel proxy. Almost all of them are in common use depending on the needs of a network.
Firewall appliances may feature as a general computer and is a standalone combination of computing hardware and software while a commercial grade firewall system is the actual software application that runs on a general purpose computer.
Residential/SOHO firewall appliances are commonly known as broadband routers or modems and are used in many homes and offices around the world. They act as a stateful firewall and control traffic from the internet world that is transferred between the host compute and the internet service provider.
Residential/SOHO firewall appliances are superior to personal computer based firewalls because they are the first line of defense to external threat. They have the capability to restrict specific MAC addresses.
Screen subnet firewalls are considered more secure than screened host architectures. They provide a DMZ while a screened host architecture provides a kind of dedicated firewall.
Both of them function similar. Both are in the front line to an untrusted network. Bastion host has a separate dedicated firewall while a sacrificial host is defending the network on its own.
It is short for Demilitarized Zone. It acts as space is the zone where the fight for the trusted network is conducted.
The three questions are: 1. is it cost effective? 2. What is included in the base price and what is not included? and 3. Will it be able to meet growing organization security requirements?
RADIUS is a check for the identity of anyone who wishes to enter the system. RADIUS is widely supported by a variety of applications as compared to TACACS.
A content filter gives the administrator the power to restrict access to the content on a network. It is based inside the trusted network.
VPN is a virtual private network which is widely used for network security on the internet with encryption and IPsec techniques. What is the difference between a packet filtering firewall and an application layer firewall?Therefore, application level firewalls are considered more secure than dynamic packet filtering firewalls, which are more secure than packet filtering firewalls. In an application level firewall all the network packets are sent up one network stack and down a different stack resulting in two separate network sessions.
Why application layer firewall is called proxy server?A proxy firewall is also be called a gateway or application firewall. Proxy means to serve as a substitute. A proxy firewall substitutes for the client that is sending the request. Proxy firewalls monitor network traffic for core internet protocols.
How is static filtering different from dynamic filtering of packets which is perceived to offer improved security?*while static filtering firewalls allow entire sets of one type of packet to enter in response to authorised requests, the dynamic packet filtering firewall allows only a particular packet with a particular source, destination and port address to enter through the firewall.
How does a proxy server differ from a packet filtering firewall quizlet?How does a proxy server differ from a packet filtering firewall? A proxy server operates at the Application layer, while a packet filtering firewall operates at the Network layer. A proxy server can prevent unknown network attacks, while a packet filtering firewall can only prevent known attacks.
|