introductionoffirewall-140514125107-phpapp01 (1).pptx

7/24/2019 introductionoffirewall-140514125107-phpapp01 (1).pptx

1/28

Institute Of

Technology


2/28

Introduction To

Firewall

Prepared by:-Shashank Kishan 1MS13IS100

Saurav Pandey 1MS13IS096

Vivek Yagnik 1MS13IS12


3/28

Content

Defne what is frewall ?

Need o frewall

Types o frewall

Hardware frewall

Advantage and disadvantage Sotware frewall

Advantage and disadvantage


4/28

Types o frewall techniques

Packet flter

Drawack o packet fltering

Application gateway

advantage

!ircuit"level gateway

#astion host

$hat a personal frewall can do

$hat a personal frewall can not do

%anuacturing co&panies


5/28

Firewall

'irewall is device that provides secureconnectivity etweennetworks(internal)e*ternal+,


6/28

A frewall &ay e a hardware- sotwareor a co&ination o oth that is used to

prevent unauthori.ed progra& orinternet users ro& accessing a privatenetwork or a single co&puter,

All &essage entering or leaving theintranet pass through the frewall-which e*a&ines each &essage /

locks those that do not &eet thespecifed security criteria,


7/28

Why Need Firewall

To protect confdentialinor&ation ro& thosewho do not e*plicitlyneed to access it,

To protect our network/ its resources ro&

&alicious users /accidents that originateoutside o our network,


8/28

Types Of Firewall

Hardware frewall

Sotware frewall


9/28

Hardware Firewall

0t is a physical device,

0t can e installed

etween the &ode&and co&puter,

0t can e incorporatedinto a roadand routereing used to share theinternet connection,


10/28

Protect an entire network,

1sually &ore e*pensive- harder toconfgure

2,g," !isco pi*- netscreen- watchuardetc,


11/28

Hardware Firewall d!antages

1ses very little syste& resources,

%ore secure

2nhanced security control

Dedicated hardware frewalls are typically

&ore reliale

2asy to disale or re&ove

$ork independently o associated

co&puter syste&,


12/28

Hardware Firewall "isad!antages

0nstall process is &ore de&anding othphysically and &entally,

Takes up physical work space,

%ore e*pensive,

Harder to upgrade and repair,


13/28

Software Firewall

0t is a sotwareapplication,

0t is installed onto theco&puter syste& thatyou wish to protect ,


14/28

Protect a single co&puter

This is usually the co&puter with&ode& attached to it,

1sually less e*pensive- easier toconfgure,

2,g," Norton internet security- %acAeeinternet security etc,


15/28

Software Firewall d!antages

!onsideraly cheaper or even ree, Si&ple to install and upgrade,

3equires no physical changes to

hardware or network,

0deal or ho&e)a&ily use,

Takes up no physical space,


16/28

Software Firewall "isad!antages

Sotware &ay crash or e inco&patile

with syste&,

!an e di4cult to co&pletely disale /

especially re&ove,

Sotware ugs &ay co&pro&ise security,

!an e resource hungry,

0nco&patiilities with 5S,


17/28

Types Of FirewallTechni#ue

Packet flter

Application gateway)pro*y server)pro*y

application gateway


18/28

$ac%et Filter

0t looks at each packet entering orleaving the network accepts or re6ectsit ased on user"defned rules,

pplications

$resentations

Sessions

Transport

"ata &in%

$hysical

"ata &in%

$hysical

Router

pplications

$resentations

Sessions

Transport

"ata &in%

$hysical

Networ%

Networ%


19/28

Packet fltering is airly e7ective /transparent to users- ut it is di4cult to

confgure,

0n addition- it is susceptile to 0P

spoofng,


20/28

Drawacks 5 Packet 'iltering Technique

Packet fltering rules can e co&ple*,

8ogging acility is not provided y suchfrewall,

0 T!P)0P packet fltering is noti&ple&ented ully- it can lead to

security hole, !annot handle 3P! (re&ote produce

calls+,


21/28

pplication 'ateway($ro)ySer!er($ro)y pplication 'ateway

0n such type o frewall re&ote host ornetwork can interact only with pro*y

server- pro*y server is responsile orhiding the details o the internalnetwork i,e, intranet,

1sers uses T!P)0P application- such as'TP / Telnet servers,


22/28

pplications

$resentations

Sessions

Transport

"ata &in%

$hysical

Networ%

"ata &in%

$hysical

pplications

$resentations

Sessions

Transport

"ata &in%

$hysical

Application Gateway

pplications

$resentations

Sessions

Transport

Networ% Networ%

TelnetTelnet HTT$HTT$FT$FT$


23/28

This is very e7ective- ut can i&pose aperor&ance degradation,


24/28

Advantages 5 Application 9ateway

8ess co&ple* flter rules

!ost e7ectiveness

3oust authentication / logging acility

Pro*y authenticates only thoseservices or

$hich it is confgured)installed,


25/28

What $ersonal Firewall Can "o

Stop hackers ro& accessing yourco&puter,

Protect your personal inor&ation,

#locks :pop up; ads and certaincookies,

Deter&ines which progra&s canaccess the internet,

#lock invalid packets,


26/28

What $ersonal Firewall Cannot"o

!annot prevent e"&ailviruses

"only an antivirus product

with update defnitions

can prevent e"&ail viruses,

Ater setting it initially-

you cannot orget aout it"The frewall will require

periodic updates to the rule sets and thesotware itsel,

Deadly


27/28

Manufacturingcompanies

!isco syste&- 0nc,

Nortel networks corporation

=uniper networks- 0nc,

%acAee- 0nc,

>co& corporation

!itri* syste&s- 0nc


28/28

Than% you

introductionoffirewall-140514125107-phpapp01 (1).pptx

Documents