Principles of Information Security
5th Edition
ISBN: 9781285448367
Author: Michael E. Whitman, Herbert J. Mattord
Publisher: Course Technology
expand_more
expand_more
format_list_bulleted
Question
Chapter 6, Problem 4RQ
Program Plan Intro
Firewall:
A firewall is security software which imposes a set of protocols to prevent specific types of data from moving among trusted and untrusted level of networks.
Packet filtering firewall:
It is a network device from the types of firewall, which examines header of packets that transmits into a network and finds whether to drop it or forward it through next network based on its rules.
- It has separate subsets such as static packet filtering and dynamic packet filtering.
Static packet filtering:
It is a firewall, which requires configuration rules to be physically made, sequenced and altered within the firewall.
Dynamic packet filtering:
It is a firewall, which can control network traffic and make or alter the configuration rules to adapt.
Expert Solution & Answer
Trending nowThis is a popular solution!
Students have asked these similar questions
What is the distinction between blocking and nonblocking with respect to messages?
In what ways are Standard and Extended Access Lists different?How is packet filtering implemented?
What is the main distinction between the Standard and Extended Access-lists?
How does packet filtering work?
Chapter 6 Solutions
Principles of Information Security
Ch. 6 - Prob. 1RQCh. 6 - Prob. 2RQCh. 6 - Prob. 3RQCh. 6 - Prob. 4RQCh. 6 - Prob. 5RQCh. 6 - Prob. 6RQCh. 6 - Prob. 7RQCh. 6 - Prob. 8RQCh. 6 - Prob. 9RQCh. 6 - Prob. 10RQ
Ch. 6 - Prob. 11RQCh. 6 - Prob. 12RQCh. 6 - Prob. 13RQCh. 6 - Prob. 14RQCh. 6 - Prob. 15RQCh. 6 - Prob. 16RQCh. 6 - Prob. 17RQCh. 6 - Prob. 18RQCh. 6 - Prob. 19RQCh. 6 - Prob. 20RQCh. 6 - Prob. 1ECh. 6 - Prob. 2ECh. 6 - Prob. 3ECh. 6 - Prob. 4ECh. 6 - Prob. 5ECh. 6 - Prob. 1CEDQCh. 6 - Prob. 2CEDQCh. 6 - Suppose that Ms. Hamir stacked the deck with her...
Knowledge Booster
Similar questions
- What are the variations between the two types of Access Lists, Standard and Extended? How does one really perform packet filtering?arrow_forwardNote that the TCP/IP protocol suite's transport stage is where reassembly and reordering of packets occurs. A firewall may function at the Internet or data layer level of abstraction. If a traffic stream is corrupted or removed, a stateful inspection firewall will be unable to learn anything about it.arrow_forwardDon't forget that the TCP/IP protocol suite's transport stage is where reordering and reassembly of packets occurs. If necessary, a firewall may function at the Internet or data layer level of abstraction. In the event that a traffic stream is out of order or has been erased, a stateful inspection firewall will be unable to learn anything about it.arrow_forward
- Keep in mind that the reordering and reassembly of packets occurs during the transport phase of the TCP/IP protocol suite. A firewall's operations may take place at a lower level of abstraction, such as the Internet or the data layer. If a traffic stream is missing or out of order, a stateful inspection firewall will not be able to learn anything about it.arrow_forwardA prominent criticism leveled against layered protocols is the apparent overhead introduced by the act of copying that takes place at each stage. What can be done to put an end to the practice of copying?arrow_forwardIt is important to keep in mind that the reordering and reassembly of packets takes place during the transport step of the TCP/IP protocol suite. The Internet or the data layer are two examples of lower levels of abstraction that a firewall is able to function at. If a traffic stream is either out of order or has been deleted, a firewall that uses stateful inspection will be unable to determine anything about the stream's contents.arrow_forward
- DNS records should be sorted according to their record type. Each one has to be defined precisely, with illustrations and explanations of why it's useful. Is it feasible for a web server and an internal mail server to share a hostname?arrow_forwardWhen a web client attempts to get access to protected resources hosted by a web server, it is important to demonstrate the step-by-step implementation of native authentication and authorization services. What are the two most persuasive arguments in favor of layered protocols and why should they be used? You need to provide specific examples to back up your point.arrow_forwardWhen a web client requests access to protected resources on a web server, demonstrate the step-by-step implementation of native authentication and authorization services. What are the two most convincing reasons why layered protocols should be used? Give examples to back up your point.arrow_forward
- Keep in mind that packet reordering and reassembly occur throughout the transport phase of the TCP/IP protocol suite's operation. It is possible for a firewall to operate at a lower abstraction level, such as the Internet or data layer. Any information about a traffic stream that is out of order or has been deleted will be lost by a stateful inspection firewall that is using stateful inspection.arrow_forwardKeep in mind that the TCP/IP protocol suite's reassembly and reordering of packets happens during the transport phase. Some firewalls are designed to function just at the Internet or data layer level of abstraction. Without the proper sequence or the absence of a deleted packet, a stateful inspection firewall cannot make any inferences about the traffic being inspected.arrow_forwardRemember that the TCP/IP protocol suite performs packet reordering and reassembly during the transport phase. For example, firewalls may function on the Internet or the data layer, which is a lower level of abstraction. If a traffic stream is out of order or erased, a stateful inspection firewall will not be able to determine anything about it.arrow_forward
arrow_back_ios
SEE MORE QUESTIONS
arrow_forward_ios
Recommended textbooks for you
Database System ConceptsComputer ScienceISBN:9780078022159Author:Abraham Silberschatz Professor, Henry F. Korth, S. SudarshanPublisher:McGraw-Hill Education
Starting Out with Python (4th Edition)Computer ScienceISBN:9780134444321Author:Tony GaddisPublisher:PEARSON
Digital Fundamentals (11th Edition)Computer ScienceISBN:9780132737968Author:Thomas L. FloydPublisher:PEARSON
C How to Program (8th Edition)Computer ScienceISBN:9780133976892Author:Paul J. Deitel, Harvey DeitelPublisher:PEARSON
Database Systems: Design, Implementation, & Manag...Computer ScienceISBN:9781337627900Author:Carlos Coronel, Steven MorrisPublisher:Cengage Learning
Programmable Logic ControllersComputer ScienceISBN:9780073373843Author:Frank D. PetruzellaPublisher:McGraw-Hill Education
Database System Concepts
Computer Science
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:McGraw-Hill Education
Starting Out with Python (4th Edition)
Computer Science
ISBN:9780134444321
Author:Tony Gaddis
Publisher:PEARSON
Digital Fundamentals (11th Edition)
Computer Science
ISBN:9780132737968
Author:Thomas L. Floyd
Publisher:PEARSON
C How to Program (8th Edition)
Computer Science
ISBN:9780133976892
Author:Paul J. Deitel, Harvey Deitel
Publisher:PEARSON
Database Systems: Design, Implementation, & Manag...
Computer Science
ISBN:9781337627900
Author:Carlos Coronel, Steven Morris
Publisher:Cengage Learning
Programmable Logic Controllers
Computer Science
ISBN:9780073373843
Author:Frank D. Petruzella
Publisher:McGraw-Hill Education