FIREWALL

Group 1
Saba komal 19011556-056
Afaq Ahmed 19011556-048
Maham Mazhar Ul Haq 19011556-068
 FIREWALL:

• Firewall is a network security device which is used to manage and filter the incoming andoutgoing network Traffic.
• Firewall is handle or filter the traffic between private and public network.
• The main function of firewall is to manage the unwanted access over a network and also out the unfaith traffic from the network.
• Host based and Network based firewall.

Trusted Untrusted

Internal network External network

( Private) Firewall (Public)
TYPES

Firewall exist since 1980's to filter the packet over the network. There are many types of firewall
• Packet filtering
• Proxy services
• Stateful inspection
• Next Generation Firewall
 WORKING OF FIREWALL

• Firewall Basically work to filter the traffic

• And remove the malicious activity
• Firewall Block the malicious access over a network
• It senses quickly and detect the outside attack and
also notify the legitimate user over a network.
• Especially Next Generation Firewalls, focus on
blocking malware and application-layer attack
NETWORK LAYER & APPLICATION LAYER INSPECTION

• Network layer or packet filters inspect packets at a relatively low level of the TCP/IP protocol
stack, not allowing packets to pass through the firewall unless they match the established rule
set where the source and destination of the rule set is based upon Internet Protocol (IP)
addresses and ports.
• Firewalls that do network layer inspection perform better than similar devices that do
application layerinspection. The downside is that unwanted applications or malware can pass
over allowed ports, e.g outbound Internet traffic over web protocols HTTP and HTTPS, port 80
and 443 respectively
 PACKET FILTERING
• Packet filtering is a firewall technique used to control network access by monitoring outgoing and incoming packets
and allowing them to pass or halt based on the source and destination Internet Protocol (IP) addresses, protocols and
ports
• It works on layer 4.
• Check IP header,TCP header.
• Work on Network and Transport Layer
• Can block IP address.
• Can block a services
PROXY SERVICES

• A proxy firewall is a network security system that protects network resources by filtering
messages at the application layer
• It works on layer 5.
STATEFUL INSPECTION

• In computing, a stateful firewall is a network-based firewall that individually tracks sessions of

network connections traversing it.
• Stateful packet inspection, also referred to as dynamic packet filtering, is a security feature
often used in non commercial and business networks.
SOFTWARE BASED
FIREWALL
Examining built-in firewall software in our systems:
Managing firewall settings:
Advanced firewall settings:

Inbound Rules Outbound Rules

Inbound firewall rules protect the Outbound firewall rules protect against
network against incoming traffic, such as outgoing traffic, originating inside a
disallowed connections, malware, and network.
denial-of-service (DoS) attacks.
 NEXT GENERATION FIREWALL
What is next generation firewall?

 A next-generation firewall (NGFW) is a network security device that provides capabilities

beyond a traditional, stateful firewall.
 While a traditional firewall typically provides stateful inspection of incoming and outgoing
network traffic, a next-generation firewall includes additional features like application
awareness and control, integrated intrusion prevention, and cloud-delivered threat
intelligence.

ASA firewall stand for Adaptive Security Appliance which is used permit inbound and
outbound traffic.
 NEXT GENERATION FIREWALL

Next-generation firewall must include:

 Standard firewall capabilities like stateful inspection
 Integrated intrusion prevention
 Application awareness and control to see and block risky appsThreat intelligence sources
 Upgrade paths to include future information feedsTechniques to address evolving security
threats.

Types of NGFW:
 Host Based Firewall
 Network Based Firewall
 H OST BA SED F IR EW A L L ( P R OT ECT
ONL Y H OS T) :
 Network based Firewall (protect network):
HOW TO DO LAB:-
FOR NGFW
EXAMPLE:
SERVER CONFIG
ROUTER CONFIG
ASA CONFIG
ASA CONFIG
ASA CONFIG
SLIDE TITE
Thank you!