Firewall: Difference between revisions

From Citizendium
Jump to navigation Jump to search
imported>Howard C. Berkowitz
(New page: {{subpages}} In computer networks, a '''firewall''' is a set of information security functions that may or may not reside in a single physical computer. Large or fault-tolerant net...)
 
m (Text replacement - "{{subpages}}" to "{{PropDel}}<br><br>{{subpages}}")
 
(One intermediate revision by one other user not shown)
Line 1: Line 1:
{{subpages}}
{{PropDel}}<br><br>{{subpages}}
In [[computer network]]s, a '''firewall''' is a set of [[information security]] functions that may or may not reside in a single physical computer. Large or fault-tolerant networks have multiple firewalls.  The functions control certain types of access to the protected network.  Most often, we think of the attacks as coming from the [[Internet]], but firewalls have applications for internal networks &mdash; and not all secure access through the Internet goes through a firewall.
In [[computer network]]s, a '''firewall''' is a set of [[information security]] functions that may or may not reside in a single physical computer. Large or fault-tolerant networks have multiple firewalls.  The functions control certain types of access to the protected network.  Most often, we think of the attacks as coming from the [[Internet]], but firewalls have applications for internal networks &mdash; and not all secure access through the Internet goes through a firewall.


Line 5: Line 5:
*[[Stateless packet filtering]]
*[[Stateless packet filtering]]
*[[Stateful packet inspection]]
*[[Stateful packet inspection]]
*[[Network address translation[[
*[[Network address translation]]
*[[Proxy services]]
*[[Proxy services]]
*[[Security logging]]
*[[Security logging]]
Line 20: Line 20:
*Fraudulent authentication
*Fraudulent authentication
*Human error
*Human error
==Cooperating services==
These may or may not share computers, although it is wise to have the minimum possible number of services on a firewall.
*[[Authentication server]]
*[[Split DNS]]
*[[Network Intrusion Detection System]]
*[[Host Intrusion Detection System]]
*[[Honeypot]]
*[[Screening router]]
*[[Virtual Private Network]] concentrator
*[[Network time server]]

Latest revision as of 04:48, 8 April 2024

This article may be deleted soon.
To oppose or discuss a nomination, please go to CZ:Proposed for deletion and follow the instructions.

For the monthly nomination lists, see Category:Articles for deletion.


This article is developing and not approved.
 Main Article
 Discussion
Related Articles  [?]
Bibliography  [?]
External Links  [?]
Citable Version  [?]
 
https://en.citizendium.org/wiki/index.php?title=Firewall&printable=yes
This editable Main Article is under development and subject to a disclaimer.

In computer networks, a firewall is a set of information security functions that may or may not reside in a single physical computer. Large or fault-tolerant networks have multiple firewalls. The functions control certain types of access to the protected network. Most often, we think of the attacks as coming from the Internet, but firewalls have applications for internal networks — and not all secure access through the Internet goes through a firewall.

Some basic firewall functions include:

What a firewall is not

  • A substitute for a security policy
  • A substitute for information security administration
  • (necessarily) a single computer
  • A guarantee of network security

Firewalls are not primary protection against

Cooperating services

These may or may not share computers, although it is wise to have the minimum possible number of services on a firewall.

Retrieved from "https://citizendium.org/wiki/index.php?title=Firewall&oldid=952036"