Uploaded byimranahmadrana28
PPTX, PDF10 views

Firewall in computer networks and C.pptx

The document discusses firewalls in system and network administration, detailing how they protect networks from internet threats by filtering traffic based on predefined rules. It covers different firewall policies, including blacklist and whitelist approaches, and differentiates between stateless and stateful firewalls. The document also explains how stateful firewalls maintain connection records to manage legitimate sessions while enhancing security.

Embed presentation

Download to read offline
Firewall Muhammad Ahmed muhammad.ahmed@superior.edu.pk +92 – 332- 5500-835
SYSTEM & NETWORK ADMINISTRATION (SNA) Firewall • To protect private networks and individual machines from the dangers of the greater Internet, a firewall can be employed to filter incoming or outgoing traffic based on a predefined set of rules called firewall policies
SYSTEM & NETWORK ADMINISTRATION (SNA) Firewall Policies • Packets flowing through a firewall can have one of three outcomes: – Accepted: permitted through the firewall – Dropped: not allowed through with no indication of failure – Rejected: not allowed through, accompanied by an attempt to inform the source that the packet was rejected • Policies used by the firewall to handle packets are based on several properties of the packets being inspected, including the • protocol used, such as: – TCP or UDP – the source and destination IP addresses – the source and destination ports – the application level payload of the packet (e.g., whether it ‐ contains a virus)
SYSTEM & NETWORK ADMINISTRATION (SNA) Blacklists and White Lists • There are two fundamental approaches to creating firewall policies (or rule sets) to effectively minimize vulnerability • Blacklist approach – All packets are allowed through except those that fit the rules defined specifically in a blacklist. – This type of configuration is more flexible in ensuring that service to the internal network is not disrupted by the firewall, but is naïve from a security perspective in that it assumes the network administrator can enumerate all of the properties of malicious traffic. • Whitelist approach – A safer approach to defining a firewall rule set is the default deny policy, in which packets ‐ are dropped or rejected unless they are specifically allowed by the firewall.
SYSTEM & NETWORK ADMINISTRATION (SNA) Firewall Types • packet filters (stateless) – If a packet matches the packet filter's set of rules, the packet filter will drop or accept it • "stateful" filters – it maintains records of all connections passing through it – it determine if a packet is either the start of a new connection, a part of an existing connection. • application layer – Some times it is desirable to filter packets based upon actual content rather than considering origin and destination address
SYSTEM & NETWORK ADMINISTRATION (SNA) Stateless Firewalls • A stateless firewall doesn’t maintain any remembered context (or “state”) with respect to the packets it is processing. • Instead, it treats each packet attempting to travel through it in isolation without considering packets that it has processed previously. • packet filtering is based on source and destination address, port and protocols. – filter examines the header of each packet based on a specific set of rules, and – on that basis, decides to prevent it from passing (called DROP) or allow it to pass (called ACCEPT).
SYSTEM & NETWORK ADMINISTRATION (SNA) Stateless Restrictions • Stateless firewalls may have to be fairly restrictive in order to prevent most attacks.
SYSTEM & NETWORK ADMINISTRATION (SNA) Statefull Firewalls • Stateful firewalls can tell when packets are part of legitimate sessions originating within a trusted network. • Stateful firewalls maintain tables containing information on each active connection, including the IP addresses, ports, and sequence numbers of packets. • Using these tables, stateful firewalls can allow only inbound TCP packets that are in response to a connection initiated from within the internal network.
SYSTEM & NETWORK ADMINISTRATION (SNA) Statefull Firewall Example • Allow only requested TCP connections:

More Related Content

PPTX
Firewalls and packet filters
byMOHIT AGARWAL
 
PPTX
Cyber Security - Firewall and Packet Filters
byRadhika Talaviya
 
PPT
Packet Filtering in computer networks.ppt
byimranahmadrana28
 
PPT
Lecture in network security and mobile computing
byAbdullahOmar704132
 
PPTX
Lecture-13-Firewall_information_Security.pptx
byhomecooking511
 
PDF
UNIT 4 Firewalls Information Security Sharad Institute
bySatishPise4
 
PPTX
FIREWALL
byswati463221
 
PPTX
Firewall
bySaurabh Chauhan
 
Firewalls and packet filters
byMOHIT AGARWAL
 
Cyber Security - Firewall and Packet Filters
byRadhika Talaviya
 
Packet Filtering in computer networks.ppt
byimranahmadrana28
 
Lecture in network security and mobile computing
byAbdullahOmar704132
 
Lecture-13-Firewall_information_Security.pptx
byhomecooking511
 
UNIT 4 Firewalls Information Security Sharad Institute
bySatishPise4
 
FIREWALL
byswati463221
 
Firewall
bySaurabh Chauhan
 

Similar to Firewall in computer networks and C.pptx

PPTX
Firewalls
byShashwat Shriparv
 
PPT
Firewall protection
byVC Infotech
 
PPT
Firewall
byAmuthavalli Nachiyar
 
DOCX
A firewall is a network security device.
byabidhassan225
 
PPT
Firewall
byKunal Kumar
 
PDF
FIREWALLs in an information security.ppt
bysanamjutt055
 
PPT
Network Security Firewalls hELPFUL TT.ppt
bysadiaafrin562177
 
PPTX
Firewalls by Puneet Bawa
byPuneet Bawa
 
PPTX
FIREWALLS BY SAIKIRAN PANJALA
bySaikiran Panjala
 
PPTX
Firewall (2)
bymarghali
 
PDF
Firewall
byAhmed Elnaggar
 
PPTX
Firewall and its type in breif and detail -iv.pptx
byarchana22486y
 
PPTX
Firewall and Types of firewall
byCoder Tech
 
PPT
Network security
byVikas Jagtap
 
PPTX
Firewall.pptx
bySourabhPanigrahi2
 
PPTX
firrewall and intrusion prevention system.pptx
byfatimagull32
 
PPTX
U-2.pptx............................................
by322103310075
 
PPT
Firewall
byilashanawaz
 
PPTX
Firewall basics - types,architecture ,defination
bySucheta70
 
PPTX
Firewall ppt
byRevanth71
 
Firewalls
byShashwat Shriparv
 
Firewall protection
byVC Infotech
 
Firewall
byAmuthavalli Nachiyar
 
A firewall is a network security device.
byabidhassan225
 
Firewall
byKunal Kumar
 
FIREWALLs in an information security.ppt
bysanamjutt055
 
Network Security Firewalls hELPFUL TT.ppt
bysadiaafrin562177
 
Firewalls by Puneet Bawa
byPuneet Bawa
 
FIREWALLS BY SAIKIRAN PANJALA
bySaikiran Panjala
 
Firewall (2)
bymarghali
 
Firewall
byAhmed Elnaggar
 
Firewall and its type in breif and detail -iv.pptx
byarchana22486y
 
Firewall and Types of firewall
byCoder Tech
 
Network security
byVikas Jagtap
 
Firewall.pptx
bySourabhPanigrahi2
 
firrewall and intrusion prevention system.pptx
byfatimagull32
 
U-2.pptx............................................
by322103310075
 
Firewall
byilashanawaz
 
Firewall basics - types,architecture ,defination
bySucheta70
 
Firewall ppt
byRevanth71
 

More from imranahmadrana28

PPT
06-Pumping Lamma in theory of automata .ppt
byimranahmadrana28
 
PPTX
Lecture 10 DML5CorelatedNested in DB.pptx
byimranahmadrana28
 
PPTX
Lecture 8 DML3 aggregate functions in DB.pptx
byimranahmadrana28
 
PPTX
Lecture 3 Logical Design Mapping in DB.pptx
byimranahmadrana28
 
PPTX
Lecture 2.5 ER Diagram and practice in DB.pptx
byimranahmadrana28
 
PPT
Windows Server 2008 Printing in server.ppt
byimranahmadrana28
 
PPT
Port Scanning in computer networks with .ppt
byimranahmadrana28
 
PPT
DHCP sever configration in computer .ppt
byimranahmadrana28
 
PPT
ACTIVE-DIRECTORY in system and network .ppt
byimranahmadrana28
 
PPTX
Lec 1 Compiler Construction (CC) CC.pptx
byimranahmadrana28
 
PPT
Fundamentals of Algorithms in computer G
byimranahmadrana28
 
06-Pumping Lamma in theory of automata .ppt
byimranahmadrana28
 
Lecture 10 DML5CorelatedNested in DB.pptx
byimranahmadrana28
 
Lecture 8 DML3 aggregate functions in DB.pptx
byimranahmadrana28
 
Lecture 3 Logical Design Mapping in DB.pptx
byimranahmadrana28
 
Lecture 2.5 ER Diagram and practice in DB.pptx
byimranahmadrana28
 
Windows Server 2008 Printing in server.ppt
byimranahmadrana28
 
Port Scanning in computer networks with .ppt
byimranahmadrana28
 
DHCP sever configration in computer .ppt
byimranahmadrana28
 
ACTIVE-DIRECTORY in system and network .ppt
byimranahmadrana28
 
Lec 1 Compiler Construction (CC) CC.pptx
byimranahmadrana28
 
Fundamentals of Algorithms in computer G
byimranahmadrana28
 

Recently uploaded

PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PDF
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
PDF
final.pdf
byomarbishtawi04
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PDF
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
PDF
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
PDF
apidays New York 2025 | AI in Application Security
byapidays
 
PDF
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
final.pdf
byomarbishtawi04
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
apidays New York 2025 | AI in Application Security
byapidays
 
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 

Firewall in computer networks and C.pptx

  • 1.
  • 2.
    SYSTEM & NETWORKADMINISTRATION (SNA) Firewall • To protect private networks and individual machines from the dangers of the greater Internet, a firewall can be employed to filter incoming or outgoing traffic based on a predefined set of rules called firewall policies
  • 3.
    SYSTEM & NETWORKADMINISTRATION (SNA) Firewall Policies • Packets flowing through a firewall can have one of three outcomes: – Accepted: permitted through the firewall – Dropped: not allowed through with no indication of failure – Rejected: not allowed through, accompanied by an attempt to inform the source that the packet was rejected • Policies used by the firewall to handle packets are based on several properties of the packets being inspected, including the • protocol used, such as: – TCP or UDP – the source and destination IP addresses – the source and destination ports – the application level payload of the packet (e.g., whether it ‐ contains a virus)
  • 4.
    SYSTEM & NETWORKADMINISTRATION (SNA) Blacklists and White Lists • There are two fundamental approaches to creating firewall policies (or rule sets) to effectively minimize vulnerability • Blacklist approach – All packets are allowed through except those that fit the rules defined specifically in a blacklist. – This type of configuration is more flexible in ensuring that service to the internal network is not disrupted by the firewall, but is naïve from a security perspective in that it assumes the network administrator can enumerate all of the properties of malicious traffic. • Whitelist approach – A safer approach to defining a firewall rule set is the default deny policy, in which packets ‐ are dropped or rejected unless they are specifically allowed by the firewall.
  • 5.
    SYSTEM & NETWORKADMINISTRATION (SNA) Firewall Types • packet filters (stateless) – If a packet matches the packet filter's set of rules, the packet filter will drop or accept it • "stateful" filters – it maintains records of all connections passing through it – it determine if a packet is either the start of a new connection, a part of an existing connection. • application layer – Some times it is desirable to filter packets based upon actual content rather than considering origin and destination address
  • 6.
    SYSTEM & NETWORKADMINISTRATION (SNA) Stateless Firewalls • A stateless firewall doesn’t maintain any remembered context (or “state”) with respect to the packets it is processing. • Instead, it treats each packet attempting to travel through it in isolation without considering packets that it has processed previously. • packet filtering is based on source and destination address, port and protocols. – filter examines the header of each packet based on a specific set of rules, and – on that basis, decides to prevent it from passing (called DROP) or allow it to pass (called ACCEPT).
  • 7.
    SYSTEM & NETWORKADMINISTRATION (SNA) Stateless Restrictions • Stateless firewalls may have to be fairly restrictive in order to prevent most attacks.
  • 8.
    SYSTEM & NETWORKADMINISTRATION (SNA) Statefull Firewalls • Stateful firewalls can tell when packets are part of legitimate sessions originating within a trusted network. • Stateful firewalls maintain tables containing information on each active connection, including the IP addresses, ports, and sequence numbers of packets. • Using these tables, stateful firewalls can allow only inbound TCP packets that are in response to a connection initiated from within the internal network.
  • 9.
    SYSTEM & NETWORKADMINISTRATION (SNA) Statefull Firewall Example • Allow only requested TCP connections: