William Bell is the Director of Security for EC Suite; a leading provider of credit card processing, affiliate management, wholesale bandwidth, and content protection and other e-commerce solutions.
The word "firewall" is commonly heard in almost any conversation about network security. They are hailed as being protective and necessary, but the question is: what exactly is a firewall, and what does it do? A firewall can be either a piece of hardware that sits on the network, or it can be a software utility used on a server. Once implemented, a firewall acts as the first line of defense for your network, used to protect your information from outside threats.
There are two types of firewalls; standard firewalls, and application layer firewalls. Standard firewalls, also known as stateful packet inspection firewalls, provide two distinct services – the first being Network Address Translation (NAT), which allows multiple computers on the same Local Area Network to use an internal IP addressing scheme in order to share an IP address on the Internet. Using NAT, the internal IP address is "translated" at the firewall so that only a single IP address is needed for multiple computers to access the Internet. The other function of standard firewalls is basic port protection, which prevents data transmission through certain ports both entering and leaving the network. In this regard, standard firewalls are limited in customizability; however, they are inexpensive, easy to set up, and perfect for networks that may not need complex access controls.
Application layer firewalls provide all the same functionality as standard firewalls, with some added features and flexibility. Rule sets can be defined using an Access Control List (ACL), which allow certain users to access specific servers or to the Internet, while denying that same access to other users or computers. This greatly increases the level of internal security on your network. Along those same lines, application layer firewalls also allow port forwarding, which enables only specified applications to send and receive data through specific ports on the network, while disabling the same port for all other applications.
In addition to fully customizable access control, application layer firewalls are equipped with intrusion detection and event logging. If a possible breach has been committed, the system will notify the administrator and store information about the occurrence in the system event logs.
Both types of firewalls can be installed and managed locally, or administrated remotely by a third party organization, using off-site equipment. The latter is known as managed firewall service.
Standard Firewalls
Network Address Translation (NAT)
Single Internet IP address
Basic port protection
Enable or disable port ranges
Inexpensive and easy to set up
Manage locally or remotely
Application Layer Firewalls
Added features and flexibility
Rule sets via Access Control List (ACL)
Control server access
Port forwarding
Intrusion detection
Event logging
Manage locally or remotely
Managed firewalls are maintained by a company separate from the business using the network. With a managed firewall, you have access to skilled technicians who specialize in firewall management, so human error is reduced. Research time is lowered because the people in charge of the network already know how to operate it, as opposed to local IT staff having to spend time researching how to set up and secure firewalls. Event logs are also reviewed by people who fully understand the nature of the messages, and how to react and respond to them. Cisco equipment is often used, which is standard in the industry. A managed firewall can also provide Virtual Private Network (VPN) service to allow users to log into the company network remotely for the purposes of sending/receiving company e-mail, transferring files, and viewing intranet pages. Managed firewalls also allow easy customization of access control methods, with skilled technicians handling the actual configuration. Network access does not have to be limited to employees; clients may have services available to them that require access to the company network, and these services can be made available through a managed firewall with VPN setup. In some cases, partnered companies may have shared use of a single network. Managed firewalls make setup of all these things quick and easy.
- Related Videos
- Related Articles
- Ask / Related Q&A
- Wondershare Released New Re-designed Photo Software Website
- Some Great Software Websites
- What You Need To Know About Popular Software Website Design
- Website design and hosting - Software Development - Application Software - website design company - Outsource software - SEO
- What a good software website!
- DVD Ripper Software Website Launch – New Website for Mac Users
- SEnuke SEO Software Review
- How To Decide Onto Niche For Your Membership Software?
Promote your Online Business with Internet Marketing
By: Melanie Garside | 06/01/2010Internet marketing is a form of promotion used by the entrepreneurs to promote the business. This form of marketing empowers the marketers to fully tap the potential of Internet medium.
Advantages Of Legitimate Data Entry Jobs
By: Alan Lim | 06/01/2010Legitimate data entry jobs are a good source of income. Read on this article to know more about them.
Breaking New Ground With Professional Letterheads
By: Kate | 06/01/2010Going for professional letterhead printing is the best way to show you are serious about your letterheads and your business.
what is dual sim cards dual standby cell phone?
By: agoodic | 06/01/2010dual cards cell phones have two sim cards in one cell phone,dual standby support two cell phone numbers online at the same time. in China cell phones market,dual sim cards cell phones are very popular to be a cell phone standard.no dual cards,no sale.dual sim cards dual standby is the lowest standard for dropship
what is dual sim cards dual standby cell phone?
By: agoodic | 06/01/2010dual cards cell phones have two sim cards in one cell phone,dual standby support two cell phone numbers online at the same time. in China cell phones market,dual sim cards cell phones are very popular to be a cell phone standard.no dual cards,no sale.dual sim cards dual standby is the lowest standard for dropship
what is dual sim cards dual standby cell phone?
By: agoodic | 06/01/2010dual cards cell phones have two sim cards in one cell phone,dual standby support two cell phone numbers online at the same time. in China cell phones market,dual sim cards cell phones are very popular to be a cell phone standard.no dual cards,no sale.dual sim cards dual standby is the lowest standard for dropship
Branded Sports Apparel Supplied at Wholesale Apparel Lots
By: god8858 | 06/01/2010Athletics which are the about common everyday pursuit of everyone at the present clock are coming much popularity by the clock. The Sports players enjoy to wearable diverse fashions of apparels to present off and for being adequate also. Many of the players take to wear branded dresses as the little term is of inexpensive price and inferior quality.
How to Setup & Use the R4DS for the Nintendo DS
By: Rebecca | 06/01/2010The R4 DS is a slot 1 DS flash kit designed to play ROMs. I may be stating the obvious here, but the point is; that's what it's meant to do, and it does it very well. Often time's people are confused on how to properly setup the R4DS, and that is what I am here for.
Firewalls: Understanding Your Network's Front Line Defense
By: William Bell | 30/06/2008 | Online BusinessThey are hailed as being protective and necessary, but the question is: what exactly is a firewall, and what does it do? A firewall can be either a piece of hardware that sits on the network, or it can be a software utility used on a server. Once implemented, a firewall acts as the first line of defense for your network, used to protect your information from outside threats.
Securing Credit Transactions: the Pci Data Security Standard
By: William Bell | 30/06/2008 | Online BusinessThe Payment Card Industry (PCI) Data Security Standard is a list of rules that define a set of regulations for credit card security over the Internet. Representatives from several major credit companies including Visa, MasterCard, American Express, Discover, and JCB got together and formed the PCI Security Standards Council, which in turn developed the PCI Data Security Standard.