TABLE OF CONTENTS Firewall traffic control and policy configuration
Understanding port orientations
Web access control and filtering HTTP sites
Allowing/disallowing dynamic content on dynamic port ranges
Everything about a firewall is about traffic control through the opening and closing of ports or the filtering and inspection of traffic. This is done, as discussed in the previous chapter, through policy management. This chapter, and Chapter 7, provides in situ deployment tactics. Read both of them to gain a comprehensive understanding of deployment conditions. Having developed a policy and an understanding, it is time to ensure that the firewall reflects that understanding accurately.
There are many, many types of traffic. It would be an epic task to write a comprehensive transport lexicon. More purposeful, perhaps, would be to review the most common types of traffic that often require special handling. The phrase open up a port has been used quite generously in this book, and herein explains exactly what that means.
In many enterprise environments, such as large law firms, corporations, consultancies, and manufacturing support facilities, the requirement exists for Internet connectivity. We ve discussed, at length, the risks of opening up a network to the Internet. The focus, so far, has been on the transport and network layers. This chapter moves up a level, shifting the focus to the application layer.
As mentioned in Chapter 7, a...
