Forewall Types Flashcards
NGFW
Advanced firewall that can preform dpi(header and payload inspection), act as a IPS, has application awareness , can url filter and can integrate with LDAP or AD to crest user specific rules and policies
Packet filtering firewall
A firewall that inspects packet headers and filter based on src and des ip address, ports and protocols only
- operators at layer 3 and 4 of OSI model
-Cannot detect sophisticated attacks
Stateful inspection firewalls
Firewall that filter traffic and makes decisions based on the state and context of a connection
- operates at layer 3 and 4
-maintains a state table that keeps track of the state of connections
UTM firewalls
A unified device that preforms that function of many devices liek a firewall, vpn, content filter, IDS/IPS all in one component
-simplified management
-good for small businesses
-also does DPI
-if this implemented then you don’t need a ngfw but it can’t handle lot of traffic so lot good for big corporate
WAF firewalls
Web application firewalls- specialized firewall which filter and monitor HTTP traffic
-prevent web based attacks like - SQL injection, XSS