The document defines different types of firewalls and their purposes. It discusses firewall design principles like establishing controlled links and protecting networks from internet attacks. There are four main types of firewalls: proxy, stateful multilayer inspection, packet filtering, and circuit level gateway. Proxy firewalls act as gateways for specific applications. Stateful multilayer inspection firewalls monitor active connections to determine which network packets to allow. Packet filtering firewalls work at the TCP/IP layers to filter packets. Circuit level gateway firewalls rely on packet headers to filter sessions. More complex firewall configurations beyond single systems are also possible.

3. Objectives:
• Define a Firewall
• Identify the different types of a firewall and its
purpose
• Configure the Firewall

4. WHAT IS A ?
https://www.youtube.com/watch?v=x1YLj06c3hM

6. A firewall is a piece of software that stands
between a computer or network and the Internet. A
firewall serves to block these unauthorized
requests, passing through only designated traffic.
The Firewall

9. Firewall Design Principles
• Aims:
– Establish a controlled link
– Protect the premises network from Internet-based attacks
– Provide a single choke point
9

10. Four general techniques of a
Firewall :
1. Service control
– Determines the types of Internet services that can be accessed,
inbound or outbound
2. Direction control
– Determines the direction in which particular service requests are
allowed to flow
3. User control
– Controls access to a service according to which user is attempting
to access it
4. Behavior control
– Controls how particular services are used (e.g. filter e-mail)
10

12. • Application level Gateway Firewalls (Proxy)
• Stateful Multilayer Inspection Firewalls
• Packet Filtering Firewalls
• Circuit Level Gateway Firewalls

13. Types of Firewalls
PROXY FIREWALL
• A proxy firewall serves as the gateway from one
network to another for a specific application.
13

14. Types of Firewalls
Stateful Multilayer Inspection Firewalls
• known as dynamic packet filtering, is a firewall
technology that monitors the state of active
connections and uses this information to determine
which network packets to allow through the
firewall.
14

15. Types of Firewalls
15
Packet Filtering Firewalls
• Packet filtering
firewalls work at levels 3
and 4 of the
TCP/IP protocol stack,
filtering TCP and UCP
packets based on any
combination of source IP
address, destination IP
address, source port,
or destination port.

16. Types of Firewalls
Circuit Level Gateway Firewalls
A circuit-level gateway monitors TCP handshaking
between packets from trusted clients or servers to
untrusted hosts and vice versa to determine whether
a requested session is legitimate. To filter packets
in this way, a circuit-level gateway relies on data
contained in the packet headers for the Internet's
TCP session-layer protocol. Because a circuit-level
gateway filters packets at the session layer of the
OSI model, this gateway operates two layers higher
than a packet-filtering firewall does. 16

17. Types of Firewalls
THREAT-FOCUSED NGFW
• These firewalls include all the capabilities of a traditional NGFW and
also provide advanced threat detection and remediation.
• Know which assets are most at risk with complete context awareness
• Quickly react to attacks with intelligent security automation that sets
policies and hardens your defenses dynamically
• Better detect evasive or suspicious activity with network and endpoint
event correlation
• Greatly decrease the time from detection to cleanup with retrospective
security that continuously monitors for suspicious activity and behavior
even after initial inspection
• Ease administration and reduce complexity with unified policies that
protect across the entire attack continuum
17

19. IN ADDITION TO THE USE OF SIMPLE CONFIGURATION OF A SINGLE
SYSTEM (SINGLE PACKET FILTERING ROUTER OR SINGLE GATEWAY),
MORE COMPLEX CONFIGURATIONSARE POSSIBLE
THREE COMMON CONFIGURATIONS

30. QUIZ:
1. The purpose of a firewall on computer networks is to -
a. Prevent computers from overheating
b. Prevent unwanted network connections from being made
c. Allow more than 4 computers to share the same Internet connection
d. Allow pictures and video to be downloaded from a camera to a computer
2. Which one of the following can be considered to be a hardware firewall?
a. Router
b. Hub
c. Bridge
d. Switch
3. Which of the following are true about Firewalls?
a. Filters network traffic
b. Can be either a hardware or software device
c. Follows a set of rules
d. All the above

31. 4. Which one of the following is a key function of a firewall?
a. Monitoring
b. Copying
c. Deleting
d. Moving
5. What is "phishing?
a. "Spoofed" e-mails and fraudulent websites designed to fool recipients
into divulging personal financial data such as credit card numbers, account
usernames and passwords
b. A type of computer virus
c. An example of a strong password
d. None of the above
6. What are some of the benefits of using a firewall for your LAN?
a. Increased access to Instant Messaging
b. Stricter access control to critical resources
c. Greater security to your LAN
d. Both 2 and 3

32. 7. VIRUS stands for
a. Very Important Resource Under Search
b. Virtual Information Resource Under Resize
c. Verify Interchange Result Until Source
d. Very Important Record User Searched
8. Most enterprises implement several basic security
measures. Which of the following is NOT a common security
practice?
a. Content monitoring
b. Fault tolerance
c. Firewall
d. Intrusion-detection system

34. Resources:
https://www.cisco.com/c/en/us/products/security/firewalls/what-is-a-firewall.html
https://community.windows.com/en-us/videos/firewall-network-protections-keep-
unwanted-online-traffic-out/pfyyc9XdT5M