Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > firewall > Content
Hot Articles
Under Linux system firew
ESET NOD32+ wonderful ti
How the pronunciation an
The open firewall port r
Impediment firewall secu
Individual firewall's tr
20 model of most outstan
Discusses the firewall t
360ARP firewall's simple
Discusses the firewall c
The big spider collabora
One make the supercomput
Establishment firewall i
Deploys the firewall str
About firewall's classif
Recommend Articles
Knew that the Linux oper
Discusses the firewall c
How the pronunciation an
Lets Vista network secur
The big spider collabora
Under Linux system firew
Individual firewall's tr
Establishment firewall i
The network firewall mai
In network security fire
USBKill8.0 implementatio
Discusses the firewall t
Stops up the long-distan
Clearly recognizes the f
About low in high securi
New Articles
Helps you to become kill
The novice fosters the H
Under CMD establishes th
Installs firewall's 12 m
Public Sector organisati
McAfee announces compreh
AppGate adds support for
dns Managed Security Inf
Worthing Borough Council
Hackers use top news sto
Firewall test: From basi
Resists hacker's invasio
Resists the network atta
Takes 0% resources HOST
Teaches you to use the A
Outside the distributional firewall subordinate robs the thief within family together against
  Add date: 10/27/2008   Publishing date: 10/27/2008   Hits: 1
Total 2 pages, Current page:1, Jump to page:
 
The distributional firewall is not a new thing, is one kind of main engine presence-like safety system, with protects in the enterprise network the key event server, the data and the workstation is exempt from the illegal invasion the destruction; Its principle is regards as Internet and the internal network “unfriendly”, carries on the protection to the personal computer the way is similar to the boundary firewall carries on the protection to the entire network to be the same. How many can the distributional firewall's subordinate safe have regarding the enterprise network to affect? Was related the website through the broad electric network example - - Wuxi Broadcast Television bureau group to apply the distributional firewall technology, we might understand how the enterprise did use this technology, through the establishment multi-layer security policy, has formed the reliable network system, thus has satisfied enterprise own safety requirements.
    Along with the broad electric network's unceasing development, we organized richly colorful had the broad electricity characteristic open-door policy, but the following network security problem day by day has also received our attention, to guarantee that the website the security normal operation, the network administrator using network products and so on firewall, router carried on the safety protection, these played prevented “the outside” the attack and the invasion role objectively, but this tradition's firewall technology (was named boundary firewall) to be able to prevent from the exterior majority of attacks, existed in name only regarding the confined internal invasion. Therefore, was born one kind to use in isolating, stopping up the emerging firewall technology - - distributional firewall which specially the intranet leaked.
    First, distributional firewall's technical characteristic
    1.1 main engine presences
    The distributional firewall's most main feature selects the main engine presence method, therefore called that it “the main engine firewall”, its key character is the presence, in is protected on main engine, outside this main engine's network, no matter is occupies outside the network interior or the network thought that may not trust, the service which therefore may aim at on this main engine to move the concrete application which and provides outward to establish the pointed very strong security policy. The main engine firewall to the distributional firewall architecture's outstanding contributions is, causes the security policy not only to pause between the network and the network, but extends the security policy promotion to each network end-point.
    1.2 inserting operating system essence
    This was mainly aims at the present pure software type distributional firewall, for own security and stopped up operating system's crack thoroughly, the main engine firewall's safe monitor core engine must inlay the person operating system essence the shape movement, took over control the network card directly, after carried on all data packet the inspection submitted the operating system again. Cannot realize this kind of distributional movement pattern main engine firewall, because receives the operating system secure restriction, has the obvious safe hidden danger.
    1.3 are similar to individual firewall
    Individual firewall is one kind of software firewall product, it is before the distributional firewall already appears a kind of firewall product, it uses for to protect the sole main engine system. Distributional has the similarity in view of the tabletop application's main engine firewall with individual firewall, if they correspond individual system, but its difference is also essential. First their mode of administration is totally different, the individual firewall's security policy establishes by system user, the goal is against exterior attack, but in view of the tabletop application's main engine firewall's security policy from overall system's manager unified agreement and the establishment, besides plays the protective function to this tabletop machine, may also control visit to this tabletop machine foreign, and this kind of safety mechanism is the tabletop machine user not obviously and cannot modify.
    Next, is different with individual firewall face individual user, is faces the enterprise customer in view of the tabletop application's main engine firewall, it constitutes an enterprise application plan together with distributional firewall other products, forms a security policy center global administration, security check mechanism dispersion arrangement distributional firewall architecture.
Second, distributional firewall's structure and principle
    2.1 distributional firewall structures
    The typical distributional firewall system structure following chart shows, is composed of three parts:


 
Other pages: : 1 * 2 * Next>>
Prev:How to establish the firewall to realize is forbid QQ, MSN and so on Next:Network security which is the lighter and which is the heavier router VS firewall

Comment:

Category: Home > firewall
Home