Layered firewalls refer to multiple layers of defense with increasingly
granular rules and an increasingly smaller trust group as you get deeper in
the organization.
Thus a perimeter firewall may provide Internet defense for the whole
organization, a business unit/division firewall may in turn reside behind
the corporate backbone router protecting that business unit's trust group,
both from outsiders (as a second layer of defense - protecting from possible
vulnerabilities or misconfigs in the perimeter firewall) and some insiders,
a segment or departmental firewall may do the same for a yet smaller trust
group and ultimately server based or client based firewalls - provide the
most granular and specific rule bases for the smallest trust group.
Avi A. Fogel
Network-1 Security Solutions, Inc.
"Securing e-Business Networks"
-----Original Message-----
From: Magowan, Richard M. (ITS) [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 21, 1999 5:07 PM
To: '[EMAIL PROTECTED]'
Subject: Layered Firewalls
Hi All,
Recently someone put a bug in management's ear here regarding "layered"
firewalls. I am not familiar with this term. Logically I think of a layered
approach where say you might run a PIX Firewall to the ISP, maybe have a
Checkpoint firewall in front of the PIX to do different filtering etc. Or am
I completely wrong and does the term "layered firewall" define some firewall
architecture I haven't heard of. Any advise/links are appreciated. Thanks.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
