The distinctions between screened host, screened subnet and DMZ perimeter security architectures
Screen Host:
The screened host firewall s a more flexible firewall than the dual-homed gateway firewall, however the flexibility is achieved with some cost to security. The screened host firewall is often appropriate for sites that need more flexibility than that provided by the dual-homed gateway firewall.
The screened host firewall combines a packet-filtering router with an application gateway located on the protected subnet side of the router.gif The application gateway needs only one network interface. The application gateway\\\'s proxy services would pass TELNET, FTP, and other services for which proxies exist, to site systems. The router filters or screens inherently dangerous protocols from reaching the application gateway and site systems. It rejects (or accepts) application traffic according to the following rules:
1. Application traffic from Internet......
Join Now or Login to view the rest of this paper.
Approximate Word Count: 1316
Approximate Pages: 6 (260 words per double-spaced page) |