This document discusses hardware firewalls, including: - Hardware firewalls are physical devices that connect networks to the internet and employ techniques to protect from unauthorized access. - The main types of firewalls are packet filters, stateful inspection, and proxy services. Packet filters analyze packets against rules, stateful inspection compares key packet parts to a database, and proxy services retrieve information from the internet through the firewall. - Important factors to consider when looking for a hardware firewall include trusted security, capacity, technical support, VPN support, and failover capabilities. Hardware firewalls provide speed, security, and do not interfere with other applications compared to software firewalls.

1. HARDWARE FIREWALL
Subrata Paul
Roll: 13015411
Department of Computer Science & Engineering
University of Rajshahi

2. Index
• Firewall
• Hardware Firewall
• Types of firewall
• Top 10 Hardware Firewall
• 10 things to look for in a hardware -based firewall
• Vendor
• Application
• Advantages & Disadvantages

3. FIREWALL
Firewall:A firewall is a network security system, either hardware- or software-based, that controls
incoming and outgoing network traffic based on a set of rules

4. Definition of Hardware Firewall
• A hardware firewall is a physical device that connects a
computer or network to the Internet, employing certain
advanced techniques to protect it from unauthorized
access.
• Wired routers, broadband gateways and wireless routers
all incorporate hardware firewalls that protect every
computer on a network. Hardware firewalls can be
distinguished by the techniques that they utilize to protect
a network of computers.

5. Figure of hardware firewall

6. TYPES OF FIREWALL
• The National Institute of Standards and Technology
(NIST) 800-10 divides firewalls into three basic types:
• Packet filters
• stateful inspection
• Proxy service

7. Types of Firewall(cont.)
• Packet filtering - Packets (small chunks of data) are
analyzed against a set of filters.
• Packets that make it through the filters are sent to the
requesting system and all others are discarded.

8. Types of Firewall(cont.)
• Stateful inspection - A newer method that doesn't
examine the contents of each packet but instead
compares certain key parts of the packet to a database of
trusted information .
• Information monitored for specific defining characteristics,
then incoming information is compared to these
characteristics.

9. Types of Firewall(cont.)
• Stateful inspection

10. Types of Firewall(cont.)
• Proxy service - Information from the Internet is retrieved
by the firewall and then sent to the requesting system and
vice versa.

11. Top 10 Hardware Firewalls
• Netgear Network Firewalls Wireless N 8-Port GB VPN
FW Ethernet Switch
• Linksys Network Firewalls ASA 5505 10-User Adaptive
Network Security Appliance
• JUNIPER Networks - SSG 140 SH Firewall Security
Appliance Networking
• CISCO - ASA5520-BUN-K9 10-100-1000 FIREWALL
Networking
• CISCO - ASA5505-50-BUN-K9 10-100 FIREWALL
Networking
• CISCO - ASA 5515-X NETWORK SECURITY/FIREWALL
APPLIANCE

12. Top 10 Hardware Firewalls(cont.)
• CISCO - ASA5540-BUN-K9 10-100-1000 FIREWALL
Networking
• CISCO - ASA 5506W-A-X Firewall Security Appliance
Networking
• SONICWALL - (01-SSC-3850) 12 Port Security Appliance
Networking
• SONICWALL - (01-SSC-0215) 5 Port Security Appliance
Networking

13. Netgear Network Firewalls
• ProSafe Wireless-N 8-port Gigabit VPN Firewall securely
connects up to 5 remote office or traveling users to your
office network via VPN. Stateful packet inspection firewall
for robust business security. Gigabit Networking Ethernet
ports offer 10x the speed of Fast Ethernet.
• Initiates up to 12 VPN tunnels simultaneously
• IPsec VPN connections using (128-bit, 256-bit) AES and
168-bit 3DES encryption
• Smart wizard connects to your ISP quickly and easily
• Windows, UNIX, Macintosh and Linux compatible
• 64 VLAN support
• 5 SSL VPN connections

14. Netgear Network Firewalls
• Figure of netgear Network Firewalls

15. Linksys Network Firewalls
• The Linksys ASA 5505 10-User Adaptive Security Appliance is a
comprehensive plug-and-play device that integrates readily to LAN
networks. It provides your network with a high-performance firewall,
SSL and IPsec VPN. It is ideal for small businesses, branch offices
tele-worker setups and other small networks.
• Gives your small network a high-performance firewall, SSL and IP sec
VPN
• Simple plug-and-play design for immediate implementation
• Ideal for small businesses, branch offices and telecommuting systems
• 100 Mbps data transfer
• 8 RJ-45 10/100 base-TX LAN and 1 RJ-45 console management
• 3 USB 2.0 ports
• 2 PoE ports for powering cameras and other Ethernet devices
• SSC slot
• Security card slot

16. Linksys Network Firewalls
• figure

17. Application
• APPLICATION:
• The Cisco ACE Web Application Firewall secures and
protects Web applications from common attacks, such as
identity theft, data theft, application disruption, fraud and
targeted attacks.
• These attacks may include cross-site scripting (XSS)
attacks, SQL and command injection, privilege escalation,
cross-site request forgeries (CSRF), buffer overflows,
cookie tampering, and Denial of Service (DoS) attacks.

18. Advantage
• Advantages of hardware firewalls over software firewall:
• Speed: Normally, the hardware firewalls are tailored for faster
response times, and hence handle more traffic loads.
• Security: A firewall with its own operating system (proprietary) is
less prone for attacks.
• No Interference: A box, that is separated from other network
components can be managed better, and does not load or
slowdown other applications.
•

19. Disadvantage
• Disadvantage of hardware firewalls:
• Cost. Normally, a dedicated hardware firewall costs more
than a software firewall.
• Difficult to install, and upgrade.
• Takes up physical space, and involves wiring.

20. 10 things to looking for in a hardware -
based firewall
• 1. Trusted security
• 2. Approachability
• 3. VPN support
• 4. Capacity
• 5. Technical support
• 6. Secure wireless
• 7. Gateway security services
• 8. Content filtering
• 9. Advanced monitoring and reporting
• 10. Failover

21. Bangladeshi Vendor

22. • Thank you everyone.