Hi all,
I'm going to attend an application server architect exam. In this exam
there are some network/security questions too.
One of these is the following:
What type of firewall will you use to the validate the application
protocol of a network communication?
· a. SSL
· b. Packet Filters
· c. Stateful packet Filters
· d. Proxy
I think, since application protocols are tied to a known port it could
enough a static packet filter, that checks if the packet is going
through one certain port.....
What do you say ?
Thanks a lot
Francesco
DComTalk.com
Discussion of VoIP, VPN, Video Conferencen, DSL and other data commucations.
whizlab question
2 posts
• Page 1 of 1
Re: whizlab question
by Walter Roberson » Fri Dec 16, 2005 4:23 am
An application protocol would be, for example, that an SMTP
"RCPT TO" command does not occur until after a "MAIL FROM" command.
Static packet filters are not able to check that.
SSL is not a firewall: it is a secure transport mechanism.
It doesn't care whether what is sent over it matches the application
protocol or not.
--
I was very young in those days, but I was also rather dim.
-- Christopher Priest
"RCPT TO" command does not occur until after a "MAIL FROM" command.
Static packet filters are not able to check that.
SSL is not a firewall: it is a secure transport mechanism.
It doesn't care whether what is sent over it matches the application
protocol or not.
--
I was very young in those days, but I was also rather dim.
-- Christopher Priest
- Walter Roberson
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 0 guests