Perimeter Security Flashcards
Perimeter Security
Security devices focused on the boundary between the LAN and the WAN in your organization’s network
Firewalls
Firewalls screen traffic between two portions of a network
Types of Firewalls
§ Software
§ Hardware
§ Embedded
Packet Filtering
Firewall
§ Inspects each packet passing through the firewall and accepts or rejects it based on the rules
§ Stateless Packet Filtering
§ Stateful packet filtering tracks the requests leaving the network
Stateless Packet Filtering
Stateless firewalls are designed to protect networks based on static information such as source and destination
Stateful packet filtering
stateful firewalls filter packets based on the full context of a given network connection, stateless firewalls filter packets based on the individual packets themselves
NAT Filtering
Filters traffic based upon the ports being utilized and type of connection (TCP or UDP)
Circuit-Level gateway
Operates at the session layer and only inspects the traffic during the establishment of the initial session over TCP or UDP
Explicit Allow
Traffic is allowed to enter or leave the network because there is an ACL rule that specifically allows it
Explicit Deny
Traffic is denied the ability to enter or leave the network because there is an ACL rule that specifically denies it
Implicit Deny
Traffic is denied the ability to enter or leave the network because there is no specific rule that allows it
Layer 3 Firewall Blocks
IP addresses
Layer 4 Firewall Blocks
Ports
Web Application Firewall
§ Firewall installed to protect your server by inspecting traffic being sent to a web application
§ A WAF can prevent a XSS or SQL injection
Proxy Server
A device that acts as a middle man between a device and a remote server