FIREWALL DEVELOPMENT
INTRODUCTION:
Firewall is a set of scripts (firewall, fwup and fwdown) that implement an ip chains firewall and various forms of network address and port translation. All you have to do is read the policy file and edit it to reflect your topology and filtering policy. The policy file is composed of sections in which you need to specify: this host's trusted and untrusted network interfaces; this host's role and function within the network topology; the incoming and outgoing services to allow and the internal and external hosts that may take part in them. It has been designed to make this as painless and flexible as possible. Each section contains detailed explanations and advice on things such as when to start the firewall and the security implications of various well known internet services and advice on how to allow them safely. It is intended to introduce administrators to some subtleties of packet filtering quickly so that they can make better informed security decisions and achieve and maintain effective network security (at least the packet filtering part) in a very short time
PROPOSED SYSTEM:
As corporations become more reliant on Internet based resources, the security of the corporation from Internet based attacks becomes more and more important. One of prime technologies that allow the corporation to have increased security between the internal network and the Internet is that of a firewall. A firewall is a filtering system that grants the firewall administrator the ability to create certain filter rules that determine what kind of traffic is allowed to cross the firewall. This paper examines the many different types of filtering that can be applied to traffic that goes through a firewall and how these have been implemented in practice. The actual filtering is only part of what a firewall must do; the firewall must also be able to report back to the firewall administrator various items of information, such as any blocked traffic.
Contributions