You have a
firewall at the perimeter, so your network is safe, right? Well, not exactly. Firewalls do what they do very well, but what they do is block or allow traffic based on the rules that you configure. A firewall can block certain ports that you don't need to use, preventing hackers from using those ports to get into the network. Firewalls can also block traffic based on IP address or domain, helping to keep out messages from known spammers or preventing Web traffic from known dangerous sites. Application layer filtering firewalls can even examine the contents of packets and block them based on keywords or strings.
Most modern firewalls have some basic intrusion detection filters built in. This will protect you from the most famous (and thus, the most outdated) attacks. However, most firewalls aren't full fledged Intrusion Detection Systems or Intrusion Prevention Systems (IDS/IPS). Such systems can recognize the signatures of many more attacks, and those signatures are updated regularly.
Having a firewall on your network is only the first step. It's not a substitute for a good IDS/IPS. In fact, the two work together to keep your network safe from intruders.
Related articles: filter,
firewall,
ip,
key,
port,
security,
Server
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.