CH12 Perimeter Security Flashcards
What is Perimeter Security?
Security devices focused on the boundary between LAN and the WAN in your organization’s network
What are teh 3 types of firewall?
Software, hardware, embedded
- Software – run as a piece of software on a host or a server.
- Hardware – standalone device that’s actually an appliance that’s installed into your network.
- Embedded – work as a single function out of many on a single device. (Small office, home office router or a unified threat management device) It’s one piece of the larger device that does many different functions
What is a firewall ?
Firewalls screen traffic between two portions of a network
What is Packet Filtering?
inspects each packet passing through the firewall and accepts or rejects it based on the rules. (ex: only allowing port 80 and 443 inbound)
Two types of packet filtering : stateless and stateful
Stateless packet filtering – accept or reject packets based on the IP Address and the port number that was requested.
Stateful packet filtering – tracks the requests leaving the network.
What is NAT Filtering ?
Filters traffic based upon the ports being utilized and type of connection. (TCP or UDP). Matches the incoming traffic to the requesting IP and matching the incoming traffic to the requesting IP address and port
What is ALG ?
ALG = Application-Layer Gateway
ALG conducts an in-depth inspection based upon the application being used. This is going to apply security mechanisms to specific applications such as FDP or Telnet. Instead of deciding based on the port number, it will allow traffic that is meant for specific applications.
What is Circuit-level gateway ?
works at the session layer of the OSI model.
Only inspects the traffic during the establishment of the initial session over TPC or UDP.
What is MAC Filtering ?
filters out computers and prevent them from accessing beyond the firewall based on their MAC address
What layers of OSI model does firewall operate on?
Most operate at Layer 3 (blocking IP addresses) and Layer 4 (blocking ports)
What is WAF ?
WAF = Web Application Firewall
WAF is a firewall installed on a server. It provides traffic control in the data that’s being sent to and from your web application.
WAF can prevent threats like cross-site scripting (XSS) and SQL injection attacks
What is Proxy Server?
A device that acts as a middle man between a device and a remote server.
The proxy server allows the company to log everything that’s being requested, who made them, and to filter out things they don’t want you to access
What are 4 types of proxies?
IP Proxy
Caching Proxy
Content Filter
Web Security Gateways
What is IP Proxy ?
IP Proxy is used to secure a network by keeping its machines anonymous during web browsing
What is Caching Proxy?
Attempts to serve client requests by delivering content from itself without actually contacting the remote server. It keeps a copy of the target webpage from its cache to fulfill your request.
Disable Proxy Auto-Configuration (PAC) files for security
What is Internet Content Filter?
Used in organizations to prevent users from accessing prohibited websites and other content