YC
Uploaded byYovan Chandel
PPT, PDF14,183 views

Firewall Architecture

A firewall is a network security system that monitors and controls incoming and outgoing traffic based on security rules, acting as a barrier between a trusted internal network and an untrusted external network. Firewalls can be categorized into host-based and network firewalls, with various architectures like dual-homed host, screened host, and screened subnet providing different levels of protection and flexibility. Additionally, firewalls record logs that offer insights into traffic management, including IP addresses and protocols.

Internet
In this document
Powered by AI

Overview of firewalls as network security systems monitoring traffic.

Difference between host-based and network firewalls. Host firewall is on individual PCs; network firewalls protect overall networks.

Overview of various architectural components for firewalls, including dual-homed and screened hosts.

Description of dual-homed hosts providing defenses between trusted and untrusted networks, enhancing security.

Combining packet filtering routers with dedicated firewalls for application-level protection through proxy services.

Details on screened subnet firewalls separating functions for improved performance and establishing DMZs.

Screening routers filter packets and can serve as a perimeter firewall solution for network protection.

Importance of logging in firewalls to track and document traffic handling, including relevant IP data.

Embed presentation

Downloaded 147 times
FirewallFirewall ArchitectureArchitecture
FirewallFirewall  In computing, a firewall is a network security system that monitors and controls the incoming and outgoing network traffic based on predetermined security rules. A firewall typically establishes a barrier between a trusted, secure internal network and another outside network, such as the Internet, that is assumed not to be secure or trusted.
Firewall CategoriesFirewall Categories  Host-based firewalls  Network firewalls
Host FirewallHost Firewall  A host firewall is a software application or suite of applications installed on a singular computer. Typically, operating system manufacturers include firewall software as part of the system. This is true of Windows (post- Windows 2000), Mac OS X and many distributions of Linux (Ubuntu, Fedora and SuSE). A personal host firewall is managed on the individual computer that the firewall is installed on. Therefore, the administrator has to have access to the computer to install and configure the firewall.
Network FirewallNetwork Firewall  A network firewall functions on the network level. This means that the firewall filters data as it travels from the Internet to the computers on the network. The firewall operates with a set of data management rules that apply to the entire network. This sets up a sort of "perimeter" for the network as a first line of defense, regulating the flow of data before it even reaches the individual computers that comprise the network.
Firewall ArchitecturesFirewall Architectures
Components of Firewall ArchitectureComponents of Firewall Architecture  Dual-Homed Host Architecture  Screened Host Architecture  Screened Subnet Architecture  Screening router
Dual-Homed Host ArchitectureDual-Homed Host Architecture  Firewall dual-homing provides the first-line defense and protection technology for keeping untrusted bodies from compromising information security by violating trusted network space.
Conti…Conti…  A dual-homed host (or dual-homed gateway) is a system fitted with two network interfaces (NICs) that sits between an untrusted network (like the Internet) and trusted network (such as a corporate network) to provide secure access. Dual-homed is a general term for proxies, gateways, firewalls, or any server that provides secured applications or services directly to an untrusted network.
Screened Host ArchitectureScreened Host Architecture  This architecture combines the packet filtering router with a separate, dedicated firewall, such as an application proxy server. This approach allows the router to pre-screen packets to minimize the network traffic and loads on the internal proxy.
Conti…Conti…  The application proxy examines an application layer protocol, such as HTTP, and perform the proxy services. This separate host is often referred to as a bastion host; it can be a rich target for external attacks, and should be very thoroughly secured.
Screened Subnet ArchitectureScreened Subnet Architecture  In network security, a screened subnet firewall is a variation of the dual-homed gateway and screened host firewall. It can be used to separate components of the firewall onto separate systems, thereby achieving greater throughput and flexibility, although at some cost to simplicity. As each component system of the screened subnet firewall needs to implement only a specific task, each system is less complex to configure.
Conti…Conti…  A screened subnet firewall is often used to establish a demilitarized zone (DMZ).
Screening routerScreening router A screening router performs packet-filtering and is used as a firewall. In some cases a screening router may be used as perimeter protection for the internal network or as the entire firewall solution.
Firewall LogsFirewall Logs  In the process of filtering Internet traffic, all firewalls have some type of logging feature that documents how the firewall handled various types of traffic.
Conti…Conti…  These logs can provide valuable information like source and destination IP addresses, port numbers, and protocols. You can also use the Windows Firewall log file to monitor TCP and UDP connections and packets that are blocked by the firewall.

More Related Content

PPT
Firewalls
byRam Dutt Shukla
 
PPTX
Firewall presentation
byyogendrasinghchahar
 
PPTX
Firewall and its purpose
byRohit Phulsunge
 
PPTX
Firewall
bySaurabh Chauhan
 
PPTX
Firewall security in computer network
bypoorvavyas4
 
PDF
FIREWALL
byAkash R
 
PDF
Common Ports .pdf
byssuser822927
 
PPTX
Firewall
byNilkanth Shingala
 
Firewalls
byRam Dutt Shukla
 
Firewall presentation
byyogendrasinghchahar
 
Firewall and its purpose
byRohit Phulsunge
 
Firewall
bySaurabh Chauhan
 
Firewall security in computer network
bypoorvavyas4
 
FIREWALL
byAkash R
 
Common Ports .pdf
byssuser822927
 
Firewall
byNilkanth Shingala
 

What's hot

PPTX
Lec # 7 Symmetric and asymmetric cryptography.pptx
byskknowledge
 
PPTX
Types of firewall
byPina Parmar
 
PPTX
Security Mechanisms
bypriya_trehan
 
PPTX
System security
bysommerville-videos
 
PPTX
Symmetric and asymmetric key
byTriad Square InfoSec
 
PDF
BAIT1103 Chapter 6
bylimsh
 
PPTX
Cloud platforms - Cloud Computing
byAditi Rai
 
PPTX
Network security
byEstiak Khan
 
PPTX
Deployment Models of Cloud Computing.pptx
byJaya Silwal
 
PPTX
Block cipher modes of operation
byharshit chavda
 
PPTX
Data Acquisition
byprimeteacher32
 
PPT
Firewall
bynayakslideshare
 
PPT
Presentation on nfs,afs,vfs
byPrakriti Dubey
 
PPTX
Firewall, Trusted Systems,IP Security ,ESP Encryption and Authentication
byGopal Sakarkar
 
PPTX
Pram model
byMANASYJAYASURYA
 
PPTX
Network security (vulnerabilities, threats, and attacks)
byFabiha Shahzad
 
PPTX
Cloud Computing and Data Centers
bybega karadza
 
PPTX
IP Security
byKeshab Nath
 
PPT
Clock synchronization in distributed system
bySunita Sahu
 
PPTX
Information and network security 8 security mechanisms
byVaibhav Khanna
 
Lec # 7 Symmetric and asymmetric cryptography.pptx
byskknowledge
 
Types of firewall
byPina Parmar
 
Security Mechanisms
bypriya_trehan
 
System security
bysommerville-videos
 
Symmetric and asymmetric key
byTriad Square InfoSec
 
BAIT1103 Chapter 6
bylimsh
 
Cloud platforms - Cloud Computing
byAditi Rai
 
Network security
byEstiak Khan
 
Deployment Models of Cloud Computing.pptx
byJaya Silwal
 
Block cipher modes of operation
byharshit chavda
 
Data Acquisition
byprimeteacher32
 
Firewall
bynayakslideshare
 
Presentation on nfs,afs,vfs
byPrakriti Dubey
 
Firewall, Trusted Systems,IP Security ,ESP Encryption and Authentication
byGopal Sakarkar
 
Pram model
byMANASYJAYASURYA
 
Network security (vulnerabilities, threats, and attacks)
byFabiha Shahzad
 
Cloud Computing and Data Centers
bybega karadza
 
IP Security
byKeshab Nath
 
Clock synchronization in distributed system
bySunita Sahu
 
Information and network security 8 security mechanisms
byVaibhav Khanna
 

Viewers also liked

PPTX
Firewall presentation
byAmandeep Kaur
 
PPTX
firewall and its types
byMohammed Maajidh
 
PPT
FireWall
byrubal_9
 
PPT
Firewall
byApo
 
PPT
Firewall
byAmuthavalli Nachiyar
 
PPTX
Firewall diapositivas (Stephanie Hernández ) ( Tercer grado de Secundaria)
byStephanie Alejandra Hernández Morales
 
PPTX
Introduction of firewall slides
byrahul kundu
 
PPTX
Data Value Creation in the Industrial IoT
bySemyon Teplisky
 
DOCX
Firewall
bysyeda zoya mehdi
 
PDF
Tracxn Research — Industrial IoT Landscape, October 2016
byTracxn
 
PDF
Internet of Things & Hardware Industry Report 2016
bySparkLabs Group
 
DOC
Firewall
byApo
 
PDF
Marco Gold Standard
byMarcoTechnologies
 
PPTX
Global nanomedicine market
byInfoholic Research
 
Firewall presentation
byAmandeep Kaur
 
firewall and its types
byMohammed Maajidh
 
FireWall
byrubal_9
 
Firewall
byApo
 
Firewall
byAmuthavalli Nachiyar
 
Firewall diapositivas (Stephanie Hernández ) ( Tercer grado de Secundaria)
byStephanie Alejandra Hernández Morales
 
Introduction of firewall slides
byrahul kundu
 
Data Value Creation in the Industrial IoT
bySemyon Teplisky
 
Firewall
bysyeda zoya mehdi
 
Tracxn Research — Industrial IoT Landscape, October 2016
byTracxn
 
Internet of Things & Hardware Industry Report 2016
bySparkLabs Group
 
Firewall
byApo
 
Marco Gold Standard
byMarcoTechnologies
 
Global nanomedicine market
byInfoholic Research
 

Similar to Firewall Architecture

PPTX
UNIT-4 network information security ID system
byagasyabutolia
 
PPTX
firewall firewall firewall firewall firewall firewall firewall firewall
byNagaraja465570
 
PPT
Chapter 03
byWaldemar Gomes
 
PPTX
Firewall
byIdris Shah
 
PPT
Day4
byJai4uk
 
PDF
Firewall architectures
byArun Mahajan
 
PDF
Firewall fundamentals
byThang Man
 
PPTX
Firewall ,Its types and Working.pptx
byShrayamManandhar
 
PPT
Presentation, Firewalls
bykkkseld
 
PPTX
Firewall basics
byFredrick Hall
 
PPT
Firewall protection
byVC Infotech
 
PDF
Firewalls in network
bysheikhparvez4
 
PPT
Introduction to firewalls
byDivya Jyoti
 
PPT
Lecture 4 firewalls
byrajakhurram
 
PDF
Firewall
byShamima Akther
 
PPT
Network security
byVikas Jagtap
 
DOC
Firewalls
byShreya Singireddy
 
PDF
Cr32585591
byIJERA Editor
 
PPTX
Firewall ( Cyber Security)
byJainam Shah
 
PPT
Net Defender
bykrishna maddikara
 
UNIT-4 network information security ID system
byagasyabutolia
 
firewall firewall firewall firewall firewall firewall firewall firewall
byNagaraja465570
 
Chapter 03
byWaldemar Gomes
 
Firewall
byIdris Shah
 
Day4
byJai4uk
 
Firewall architectures
byArun Mahajan
 
Firewall fundamentals
byThang Man
 
Firewall ,Its types and Working.pptx
byShrayamManandhar
 
Presentation, Firewalls
bykkkseld
 
Firewall basics
byFredrick Hall
 
Firewall protection
byVC Infotech
 
Firewalls in network
bysheikhparvez4
 
Introduction to firewalls
byDivya Jyoti
 
Lecture 4 firewalls
byrajakhurram
 
Firewall
byShamima Akther
 
Network security
byVikas Jagtap
 
Firewalls
byShreya Singireddy
 
Cr32585591
byIJERA Editor
 
Firewall ( Cyber Security)
byJainam Shah
 
Net Defender
bykrishna maddikara
 

Recently uploaded

PPTX
evolution of internet (internet journey)
byyamunadevi49
 
PDF
OFFENSIVE OPERATIONS : THE ANATOMY OF A NETWORK TAKEOVER
byBangladesh Network Operators Group
 
PDF
DNSSEC Implementation Journey at Prime Bank’s Domain
byBangladesh Network Operators Group
 
PPTX
Passive Presentation pasdskpasdasdasdasf
byNoOne501682
 
PDF
A La Recherche Du Temps Perdu: In Search of the Cozy Web
byJen Looper
 
PDF
Cybrain Software Solutions – Building Future-Ready Digital Tools
byCybrain Software Solutions
 
PDF
Automating ISP Networks Using Ansible and IPAM as a Source of Truth [SoT]
byBangladesh Network Operators Group
 
PPTX
MEANING OF EMOJIS OF SOCIAL MEDIA - RUKUNDO Emmanuel..pptx
bysongsormusics
 
PPTX
BTCFi on Starknet,Troves.fi offers automated strategies for Bitcoin users on ...
bytrovesfi
 
PPTX
ENDNOTE refrencing how to do step by step..
byhumairasohaib19
 
PPTX
AI Presentation it all about what is ai and how to implement in real life
byshraddhasule1710
 
PPT
INTRODUCTION_TO_SOFTWARE_APPLICATION.pptx
byMESFINBELAY4
 
PPTX
Facebook: How to Maximize for Everyday Business
byLP3I Surabaya
 
PPTX
ARCHITECTURESACGCHCIUOHCOHCSAKJCOQKCHUO.pptx
bymchlrdpc2921
 
PDF
A Day in the Life of IPv6 Scanning by Matsuzaki ʻmazʼ
byBangladesh Network Operators Group
 
evolution of internet (internet journey)
byyamunadevi49
 
OFFENSIVE OPERATIONS : THE ANATOMY OF A NETWORK TAKEOVER
byBangladesh Network Operators Group
 
DNSSEC Implementation Journey at Prime Bank’s Domain
byBangladesh Network Operators Group
 
Passive Presentation pasdskpasdasdasdasf
byNoOne501682
 
A La Recherche Du Temps Perdu: In Search of the Cozy Web
byJen Looper
 
Cybrain Software Solutions – Building Future-Ready Digital Tools
byCybrain Software Solutions
 
Automating ISP Networks Using Ansible and IPAM as a Source of Truth [SoT]
byBangladesh Network Operators Group
 
MEANING OF EMOJIS OF SOCIAL MEDIA - RUKUNDO Emmanuel..pptx
bysongsormusics
 
BTCFi on Starknet,Troves.fi offers automated strategies for Bitcoin users on ...
bytrovesfi
 
ENDNOTE refrencing how to do step by step..
byhumairasohaib19
 
AI Presentation it all about what is ai and how to implement in real life
byshraddhasule1710
 
INTRODUCTION_TO_SOFTWARE_APPLICATION.pptx
byMESFINBELAY4
 
Facebook: How to Maximize for Everyday Business
byLP3I Surabaya
 
ARCHITECTURESACGCHCIUOHCOHCSAKJCOQKCHUO.pptx
bymchlrdpc2921
 
A Day in the Life of IPv6 Scanning by Matsuzaki ʻmazʼ
byBangladesh Network Operators Group
 

Firewall Architecture

  • 1.
  • 2.
    FirewallFirewall  In computing,a firewall is a network security system that monitors and controls the incoming and outgoing network traffic based on predetermined security rules. A firewall typically establishes a barrier between a trusted, secure internal network and another outside network, such as the Internet, that is assumed not to be secure or trusted.
  • 3.
    Firewall CategoriesFirewall Categories Host-based firewalls  Network firewalls
  • 4.
    Host FirewallHost Firewall A host firewall is a software application or suite of applications installed on a singular computer. Typically, operating system manufacturers include firewall software as part of the system. This is true of Windows (post- Windows 2000), Mac OS X and many distributions of Linux (Ubuntu, Fedora and SuSE). A personal host firewall is managed on the individual computer that the firewall is installed on. Therefore, the administrator has to have access to the computer to install and configure the firewall.
  • 5.
    Network FirewallNetwork Firewall A network firewall functions on the network level. This means that the firewall filters data as it travels from the Internet to the computers on the network. The firewall operates with a set of data management rules that apply to the entire network. This sets up a sort of "perimeter" for the network as a first line of defense, regulating the flow of data before it even reaches the individual computers that comprise the network.
  • 6.
  • 7.
    Components of FirewallArchitectureComponents of Firewall Architecture  Dual-Homed Host Architecture  Screened Host Architecture  Screened Subnet Architecture  Screening router
  • 8.
    Dual-Homed Host ArchitectureDual-HomedHost Architecture  Firewall dual-homing provides the first-line defense and protection technology for keeping untrusted bodies from compromising information security by violating trusted network space.
  • 9.
    Conti…Conti…  A dual-homedhost (or dual-homed gateway) is a system fitted with two network interfaces (NICs) that sits between an untrusted network (like the Internet) and trusted network (such as a corporate network) to provide secure access. Dual-homed is a general term for proxies, gateways, firewalls, or any server that provides secured applications or services directly to an untrusted network.
  • 10.
    Screened Host ArchitectureScreenedHost Architecture  This architecture combines the packet filtering router with a separate, dedicated firewall, such as an application proxy server. This approach allows the router to pre-screen packets to minimize the network traffic and loads on the internal proxy.
  • 11.
    Conti…Conti…  The applicationproxy examines an application layer protocol, such as HTTP, and perform the proxy services. This separate host is often referred to as a bastion host; it can be a rich target for external attacks, and should be very thoroughly secured.
  • 12.
    Screened Subnet ArchitectureScreenedSubnet Architecture  In network security, a screened subnet firewall is a variation of the dual-homed gateway and screened host firewall. It can be used to separate components of the firewall onto separate systems, thereby achieving greater throughput and flexibility, although at some cost to simplicity. As each component system of the screened subnet firewall needs to implement only a specific task, each system is less complex to configure.
  • 13.
    Conti…Conti…  A screenedsubnet firewall is often used to establish a demilitarized zone (DMZ).
  • 14.
    Screening routerScreening router Ascreening router performs packet-filtering and is used as a firewall. In some cases a screening router may be used as perimeter protection for the internal network or as the entire firewall solution.
  • 15.
    Firewall LogsFirewall Logs In the process of filtering Internet traffic, all firewalls have some type of logging feature that documents how the firewall handled various types of traffic.
  • 16.
    Conti…Conti…  These logscan provide valuable information like source and destination IP addresses, port numbers, and protocols. You can also use the Windows Firewall log file to monitor TCP and UDP connections and packets that are blocked by the firewall.