Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > firewall > Content
Hot Articles
The open firewall port r
Explains the specialized
ESET NOD32+ wonderful ti
How the pronunciation an
Discusses the firewall c
Under Linux system firew
Individual firewall's tr
360ARP firewall's simple
How does Firewalking-- s
Eurotech releases indust
Impediment firewall secu
Under CMD establishes th
Netintelligence awarded
Lets Vista network secur
20 model of most outstan
Recommend Articles
Knew that the Linux oper
Discusses the firewall c
How the pronunciation an
Lets Vista network secur
The big spider collabora
Under Linux system firew
Individual firewall's tr
Establishment firewall i
The network firewall mai
In network security fire
USBKill8.0 implementatio
Discusses the firewall t
Stops up the long-distan
Clearly recognizes the f
About low in high securi
New Articles
Over 150,000 metric secr
Check Point Positioned i
The must-have requiremen
safe browsing Trusteer B
Kaspersky Personal Secur
X6 VirusBarrier antiviru
Patelco Credit Union For
Panasonic Network System
Malware infections are a
Redscan rebrand as Red B
Wei?book contains?lt gui
Kaspersky Personal Secur
Imperva and Qualys Partn
The H?half of the studen
F-Secure Internet Securi
About firewall's classification and good and bad points summary(7)
  Add date: 07/18/2008   Publishing date: 07/18/2008   Hits: 5
Total 7 pages, Current page:7, Jump to page:
 


  All internal IP address to the outside person is covert. Because of this reason, outside the network nobody may through assign the IP address the way to initiate the attack directly to network any specific computer.

  Because if some kind of reason public IP address resources are quite short, NAT may cause the entire internal network to share a IP address.

  May begin using the basic package filtration firewall safety mechanism, because all spreads if the package does not have to assign to dispose NAT specially, will then be discarded. The internal network's computer is impossible to visit the exterior network directly.

  Uses NAT the shortcoming:

  The NAT shortcoming and the package filter firewall's shortcoming are the same. Although may safeguard the internal network the security, but it is also some similar limitations. Moreover in the net may use presently spreads the quite widespread wooden horse procedure to be possible to make the exterior connection through NAT, looks like it to be possible to pass through package of filtration firewall same easy.

  Attention: Now has many manufacturer development firewall, specially the condition/dynamic examination firewall, the function which should have besides them also has provided the NAT function.

  5. individual firewall

  Individual firewall's merit includes:

  Increased the protection rank, does not need the extra hardware source.

  Individual firewall except may resist the external attack at the same time, but may also resist the internal attack.

  Individual firewall has provided the protection to the public network single system. What for example a family user use is Modem or ISDN/ADSL accesses the net, the possible hardware firewall regarding him is really too expensive, or was too troublesome. But individual firewall already could expose for the user hiding in the network the information, for instance IP address and so on information and so on.

  Individual firewall's shortcoming:

  The individual firewall main shortcoming has a physical interface to the public network. Must remember, the genuine firewall must monitor and control two

  Or between more network interface correspondence. Words as the matter stands, individual firewall itself possibly easy to be threaten, or will be has this kind of weakness, the network service may bypass firewall's rule.

  Good, we already introduced in above several kind of firewalls, and discussed each kind of firewall's good and bad points. Must remember, any kind of firewall was only or is the data transmission provides for the network service had the safeguard security, but we could not the total dependence in the firewall. Except depends on the firewall to safeguard the security at the same time, we must reinforce system's security, raises own safety consciousness. As the matter stands, the data and the correspondence as well as the Web stand will have the safety control.

 
Other pages: : <<Prev * 1 * 2 * 3 * 4 * 5 * 6 * 7
Prev:One make the supercomputer firewall Next:Understands the source Linux firewall generator

Comment:

Category: Home > firewall
Home