Re: Hardware firewalls
From: Michael (mvlonden@_nospam_kabelfoon.nl)Date: 05/21/02
- Next message: Matt: "Netgear RP114 question"
- Previous message: wailakig: "Re: Hardware firewalls"
- In reply to: Eirik Seim: "Re: Hardware firewalls"
- Next in thread: wailakig: "Re: Hardware firewalls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Michael <mvlonden@_nospam_kabelfoon.nl> Date: Tue, 21 May 2002 19:43:30 +0200
Firewalls control the traffic (only IP) between LAN interfaces using a
security policy.
Other major features of a firewall are NAT and VPN. A router on the
other hand routes or bridges traffic (IP, IPX, Appletalk, etc) between
LAN and WAN interfaces.
Some firewalls can recognize a packet with e.g.. port TCP 80, as not
being HTTP. Which means that it can work at layer 7, as a router can
only work at layer 3.
Access lists on routers are intended to control traffic, so that
unwanted protocols do not consume valuable bandwidth. Because you want
to control traffic, you basically allow everything and deny the few
thing you don't want. A security policy on a firewall is meant to block
everything and you allow things.
Michael
Eirik Seim wrote:
>
> On Tue, 21 May 2002 07:56:59 +0200, Michael wrote:
> > Routers are made to route traffic from one interface to another.
> > Optional you can filter (permit/deny) this traffic with the use of
> > access lists. A router with access lists is not a firewall.
>
> Would you please define the term 'firewall', then?
>
> - Eirik
> --
> New and exciting signature!
- Next message: Matt: "Netgear RP114 question"
- Previous message: wailakig: "Re: Hardware firewalls"
- In reply to: Eirik Seim: "Re: Hardware firewalls"
- Next in thread: wailakig: "Re: Hardware firewalls"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
