You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

The Use and Usability of Direction-Based Filtering in Firewalls

Tags:
firewalls

Overview The common match fields in firewall rules refer to a packet's source and destination IP addresses, protocol, and source and destination port numbers. However, most firewalls are also capable of filtering based on a packet's direction: which network interface card the packet is crossing, and whether the packet is crossing the interface from the network into the firewall (''Inbound'') or vice versa (''Outbound''). Taking a packet's direction into account in the firewall's rules is extremely useful: it lets the firewall administrator protect against source address spoofing, write effective egress-filtering rules, and avoid unpleasant side-effects when referring to subnets that span the firewall.

Further White Paper Details
Publisher	Reed Elsevier	File Format	PDF
Date Published	February 2004
Format	White Papers
Topics	Firewalls, Network Security, Security Tools

Did you find this white paper useful? 2 out of 7 users found this white paper useful

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

Total Endpoint Protection: Lower Costs and Increase Compliance

Publisher:
McAfee

Tags:
firewalls

Microsoft SQL faces hacker threat

Researchers at security company Trend Micro have discovered a "huge number" of connection attempts on port 1433 (MSSQL Port). But afterwards, a second packet is sent, and this packet is an attempt to log-in to the SQL server, using the account name...

Channel:
Security Strategy

Where is the mysterious internet code coming from?

While such an internet address in the source field of a data packet will often be transmitted by less vigilant internet service providers, almost no provider would forward data that had such an address in the destination field.

Channel:
LANs
Tags:
mysterious,
iana,
lurhq,
iss

Symantec issues patches for four new security holes

Guido Sanchidrián, Symantec's EMEA product manager for antivirus, content filtering and security response, said the company has spent the past month developing fixes for the vulnerabilities and has now made the patches available to its customers.

Channel:
Security Strategy

Security Q&A: Your questions answered (Part 1)

There are a number of desktop encryption packages available that integrate into mail clients, and of course attachments can be password-protected, but this may in turn cause a problem with filtering or control software.

Cracked: The Great Firewall of China

By forging the source address of a packet containing a "sensitive" keyword, people could trigger the firewall to block access between source and destination addresses for up to an hour at a time. The IDS uses a stateless server, which examines each...

Is Skype secure enough for businesses?

Unlike major instant messaging applications, which do support logging and filtering, the closed nature of Skype means it is impossible for third party applications to interface with Skype. They sell for $12 each, alongside stolen credit cards...

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Firewalls White Papers

The Use and Usability of Direction-Based Filtering in Firewalls

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific