TEST BANK For Principles of Information Security 7th
Edition by Whitman and Mattord
Packet filtering firewalls - ANSWER: scan network data packets looking for
compliance with or violation of the rules of the firewall's database.
The restrictions most commonly implemented in packet-filtering firewalls are based
on a combination of the following: - ANSWER: IP source and destination address
Direction (inbound or outbound)
Protocol (for firewalls capable of examining the IP protocol layer)
Transmission Control Protocol (TCP) or User Datagram Protocol (UDP) source and
destination port requests (for firewalls capable of examination the TCP/UDP layer)
Packet structure varies depending (dependent) on - ANSWER: the nature of the
packet.
The application firewall - ANSWER: is also known as a proxy server since it runs
special software that acts as a proxy for a service request.
The proxy server is placed in - ANSWER: an unsecured area of the network or in the
demilitarized zone (DMZ).
Circuit gateway firewalls - ANSWER: do not usually look at traffic flowing between
one network and another.
The broadband router - ANSWER: devices that can function as packet-filtering
firewalls have been enhanced to combine the features of wireless access points
(WAPs).
The internal computers are - ANSWER: not visible to the public networks.
Another method of protecting the residential user is to install a software - ANSWER:
firewall directly on the user's system.
There are limits to the level of - ANSWER: configurability and protection that
software firewalls can provide.
Since the bastion host stands as a sole defender on the network perimeter, it is
commonly referred to as - ANSWER: the sacrificial host.
The dominant architecture used today is the - ANSWER: screened subnet firewall.
Edition by Whitman and Mattord
Packet filtering firewalls - ANSWER: scan network data packets looking for
compliance with or violation of the rules of the firewall's database.
The restrictions most commonly implemented in packet-filtering firewalls are based
on a combination of the following: - ANSWER: IP source and destination address
Direction (inbound or outbound)
Protocol (for firewalls capable of examining the IP protocol layer)
Transmission Control Protocol (TCP) or User Datagram Protocol (UDP) source and
destination port requests (for firewalls capable of examination the TCP/UDP layer)
Packet structure varies depending (dependent) on - ANSWER: the nature of the
packet.
The application firewall - ANSWER: is also known as a proxy server since it runs
special software that acts as a proxy for a service request.
The proxy server is placed in - ANSWER: an unsecured area of the network or in the
demilitarized zone (DMZ).
Circuit gateway firewalls - ANSWER: do not usually look at traffic flowing between
one network and another.
The broadband router - ANSWER: devices that can function as packet-filtering
firewalls have been enhanced to combine the features of wireless access points
(WAPs).
The internal computers are - ANSWER: not visible to the public networks.
Another method of protecting the residential user is to install a software - ANSWER:
firewall directly on the user's system.
There are limits to the level of - ANSWER: configurability and protection that
software firewalls can provide.
Since the bastion host stands as a sole defender on the network perimeter, it is
commonly referred to as - ANSWER: the sacrificial host.
The dominant architecture used today is the - ANSWER: screened subnet firewall.
