Blog on Firewall Selection And Configuration

                                                           Firewall Selection And Configuration


Firewall: A Network Security Device

A firewall is a network security device designed to act as a barrier between a trusted internal network and untrusted external networks, such as the internet. Its primary function is to monitor and control incoming and outgoing network traffic based on predetermined security rules.


Acts as a Barrier

The firewall serves as a barrier or a protective barrier between the internal network and external threats. It prevents unauthorized access to or from the network, effectively creating a security perimeter.


Monitors Traffic

Firewalls continuously monitor network traffic, analyzing data packets to determine whether they meet the predefined security criteria. By examining the characteristics of each packet, firewalls can make decisions about whether to allow or block the data.


Based on Predefined Security Rules

Firewalls operate based on predefined security rules set by network administrators. These rules dictate how the firewall should handle different types of network traffic. For example, specific rules may allow or deny access to certain applications, services, or IP addresses.


Highlighting Importance of Cybersecurity

Firewalls play a crucial role in enhancing cybersecurity by safeguarding networks against various cyber threats, including unauthorized access, malware, and other malicious activities. The implementation of firewalls is a fundamental aspect of a comprehensive cybersecurity strategy.

Examples: Proxy Firewall, Packet Filtering Firewall


Types Of Firewall :-



1) Host-Based Firewall:

  • Characteristics :

Location: Installed on individual network nodes (computers or devices).

Form: Software application running on the host system.

Performance: Generally has lower performance compared to network-based firewalls, as it operates on a single host.

Mobility: Highly mobile as it moves with the host system.

  • Functionalities:

Host-Level Protection: Operates at the host (individual computer) level, providing security specifically for that device.

Basic Skill Set: Typically requires a basic skill set to configure and manage.

Easy to Bypass: Can be easier to bypass for sophisticated attackers, especially if the host system is compromised.

  • Use Cases:
Personal Computers: Often used on personal computers to control incoming and outgoing traffic.

Mobile Devices: Commonly employed on mobile devices for individualized protection.


2) Network-Based Firewall:

  • Characteristics:

Location: Positioned at the network perimeter, between an internal network and external networks (e.g., the internet).

Form: Hardware device, often a dedicated appliance.

Performance: Offers higher performance compared to host-based firewalls, as it handles traffic for the entire network.

Mobility: Less mobile, as it is fixed within the network infrastructure.

  • Functionalities:

Network-Level Protection: Works at the network layer, controlling traffic based on source and destination IP addresses, ports, and protocols.

High Skill Set: Generally requires a higher skill set to configure and manage due to its network-wide impact.

Harder to Bypass: Due to its position at the network perimeter, it can be more challenging for attackers to bypass.

  • Use Cases:

Corporate Networks: Commonly used in corporate environments to protect the entire network from external threats.

Data Centers: Deployed in data centers to control and monitor traffic between internal servers and external networks.


Functionalities of Firewall :-

  • Intrusion detection and prevention : The firewall can be used for intrusion detection and detecting suspicious transactions.

  • Packet Filtering : Firewalls can be used for inspecting individual data packets as they pass through and decide whether or not to allow based on predefined criteria such as source and destination IP addresses, protocols and port numbers.

  • Application layer filtering : There are some firewalls that function at the application layer which can inspect the content of data packets to identify the specific application or service being used.

  • Logging and Reporting : The logs of the accessed data can be maintained through the use of firewalls. Summarization of the user’s activity can be done with the help of reporting.


Firewall Selection Criteria :-

  • Security requirements: Security requirements like malware, intrusion attacks as well as compliance requirements should be taken into account.

  • Scalability: For determining scalability, the traffic loads should be taken into consideration, which in turn would help in determining the accommodation of network traffic.

  • Deployment type: The deployment type should be determined before selecting the firewall. Types of deployment: cloud based, on-premises firewall, hybrid.

  • Features: Appropriate firewall must be chosen based on the features it provides. There are various features such as Application layer filtering, content filtering, support for VPN.

  • Cost: The cost factor should be taken into consideration while selecting a firewall.

FIREWALL CONFIGURATION :

Firewall configuration is a critical component of network security.

How to configure a firewall for network security?

1) Identify Your Network's Security Requirements:
2) Choose the Right Firewall
3) Placement of the Firewall:
4) Define Your Firewall Rules:
5) Logging and Monitoring:
6) Network Address Translation (NAT):
7) Application Layer Filtering:
8) Testing and Documentation:


Firewall Delivery Methods :-


As IT consumption models evolved, so did security deployment options. Firewalls today can be deployed as a hardware appliance, be software-based or be delivered as a service.

Hardware-based firewalls : A hardware-based firewall is an appliance that acts as a secure gateway between devices inside the network perimeter and those outside it.

Software-based firewalls : A software-based firewall, or host firewall, runs on a server or other device. Host firewall software needs to be installed on each device requiring protection.

Cloud/hosted firewalls : Managed security service providers (MSSPs) offer cloud-based firewalls. This hosted service can be configured to track both internal network activity and third-party on-demand environments.


Advantages :-

  • Protection from unauthorized access
  • Prevention from malware and other threats
  • Network segmentation
  • Regulation compliance
  • Control of network access
  • Monitoring of network activity

Disadvantages :-

  • complexity
  • limited visibility
  • limited adaptability
  • performance impact
  • limited scalability
  • limited VPN support
  • cost


Published by :-

1.    Siddhi Hulwane

2.    Jaai Joshi

3.    Kalyani Laddha

4.    Malhar Kapshe

5. Chaitanya Kulkarni

Comments

Post a Comment

Popular posts from this blog

Blog on Service Costing

Image
                          Service Costing What is service costing Calculating overhead and business costs successfully can help companies assess their financial health, make important business decisions and create appropriate prices for their products and services. Service costing is one calculation service-based organizations can use to better understand their operational expenses and related costs. Learning about what service costing is and how it works can help you execute your financial calculations effectively. In this article, we define what service costing is, explain when to use it, list some of its important elements, discuss the various service costing types and provide steps you can follow to calculate these costs.                              Service costing, or operating costing, is a process service organizations can use to determine a...
Read more
Image
                          Service Costing What is Service Costing Service costing is a method used by service companies to determine the costs that they should associate with the various services that they are providing.  In service costing, the costs associated with providing a service are identified, categorized, and allocated to that specific service. This process helps businesses understand the true cost of delivering each service, which is essential for pricing decisions, profitability analysis, and overall financial management. This costing is done by considering the following factors -  1. Direct costs: These are costs that can be directly traced to a particular service. Examples are labor costs of employees directly related to the provision of the service, materials or supplies used only for the service in question, and  other costs directly related to the provision of the service.   ...
Read more