Community Groups Rewards Enterprise

First Generation Firewall-Packet Filtering Firewall

abrahim
abrahim  Diamond  (1)
7 years 10 months ago  View: 711  Reply: 0
1F

Packet filtering is a method to check each packet at the network layer, and then to forward or discard packets based on security policies.

The basic principle of a packet filtering firewall is that it filters packets by configuring access control list (ACL), based on the source and destination IP addresses, the source and destination port numbers, IP identifiers and packet delivery direction.

With moderate cost and simple design, the first-generation firewall can be implemented easily.

However, it has obvious disadvantages:

  • As the complexity and length of ACL increases, its filtering performance will degrade greatly.

  • Static ACL rules are difficult to meet dynamic security requirements.

  • Packet filtering neither checks session states nor analyzes data, that is, it cannot filter data at user levels to prevent hackers from spoofing. For example, an attacker can configure the host IP address to a legal host IP address to pass packet filtering.

Comment| Reply
Favorite Favorite (0) | Like |Report
Reply
Return New post Share

Hot Group

Fixed Network Info Community
Members:9595   Posts:9360
Wireless Network Info Community
Members:2501   Posts:11275
Support HedEx User Group
Members:14004   Posts:4898
Core Network Info Community
Members:1125   Posts:14720
Network OSS Club
Members:4641   Posts:1596
Information For
Consumers
Enterprises
Carriers
Journalist
Suppliers
Job Seekers
About HUAWEI
Corporate Information
Corporate Governance
Executives
Bond Investor Relations
Sustainability
Cyber Security
Publications
Annual Report
News & Events
Latest News
Media Kit
Media Contact
Security Bulletins
Events
Huawei| Huawei Connect| Support| Privacy| Terms of Use
Contact Us:hworld@huawei.com
Follow Huawei Connect :
Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.