Security

Question 1

Types of firewalls

Answer 1

Physical firewall
Software firewall
Virtual firewall

Question 2

Host based firewall

Answer 2

Only protects one computer is in the software

Question 3

Network firewall

Answer 3

Usually a hardware device protecting the entire network

Question 4

Packet filtering firewall

Answer 4

Operates layers 3&4 of OSI model
Filter by :
Protocol: IP ,TCP, UDP, ICMP

Source and destination ip address

Source and destination TCP or UDP port number

Look at address and header of packet but doesn’t actually inspect the data of a packet

Question 5

Stateful inspection firewall

Answer 5

Operates layer 3, 4, 5 of osi model

Inbound and outbound traffic are compared to determine if a connection should be allowed based on an established session.

They look at a address and header of packet but don’t actually inspect said packet

Protects inside network from outside world but still allows traffic originating from inside the network to go outside and return

I search for google.com and google.com replies it will be let through if yahoo.com replies it will be blocked

Question 6

Application level firewall

Answer 6

Layer 7 of OSI

Actually inspects the content within the packets to find malware, viruses

Can block program level traffic

Incorporates the function of a proxy server which allows us to set up web filtering based on what websites are allowed( white list) and what websites are not (black list) or the type of website like porn or racism sites

Most thorough of the three

Question 7

IDS OR intrusion detection system

Answer 7

Alerts only against network threats but is passive and only reports the problem

Question 8

IPS OR intrusion prevention system

Answer 8

Active device that provides an automated response to threat immediately and still alerts human.