20-01-2012, 11:34 AM
Implementing a Distributed Firewall
[attachment=16313]
Intro to Security
Computer/Network Security - The prevention and detection of unauthorized actions by users of computer systems*
But what does “unauthorized” mean?
It depends on the system’s “security policy”
Firewalls
In most systems today, the firewall is the machine that implements the “security policy” for a system
A firewall is typically placed at the edge of a system and acts as a filter for unauthorized traffic
Filters tend to be simple: source and destination addresses, source and destination ports, or protocol (tcp, udp, icmp)
Distributed Firewall Concept
Security policy is defined centrally
Enforcement of policy is done by network endpoint(s)