Great Circle Associates Firewalls
(June 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: PIX and Firewall-1
From: Matt Eide <meide @ sybronint . com>
Date: Thu, 5 Jun 1997 09:47:47 -0500
To: "'firewalls @ GreatCircle . COM'" <firewalls @ GreatCircle . COM> 
Application proxies monitor commands sent at the application layer, and
reconstruct packets so that IP attacks can't be sent beyond the firewall.
(From what I understand), State-based (a.k.a. enhanced extended packet
filter) security devices inspect the first packet that comes across with
enhanced extended filtering rules and can include additional authentication.
If that packet passes all filtering rules, remaining packets of that session
are passed through without inspection.

I would like to add that Firewall-1 can be set to continue monitoring all the packets of an established session and will check them against the rule base. 

Later,

Matt
Meide @
 sybronint .
 com
Indexed By Date Previous: RE: ISP Connection
From: BLeBlanc @ igate . sprint . com
Next: RE: Solaris
From: Andrew Luca <fmrco!ocean!ajl @ uunet . uu . net>
Indexed By Thread Previous: RE: PIX and Firewall-1
From: Craig Brozefsky <craig @ onshore . com>
Next: RE: PIX and Firewall-1
From: Eric Vyncke <evyncke @ cisco . com>
Google
 
Search Internet Search www.greatcircle.com