Stateful inspection, also known as dynamic
packet filtering, is a firewall technology that monitors the state of active
connections and uses this information to determine which network packets to
allow through the firewall. Stateful inspection has largely replaced an older
technology, static packet filtering. In static packet filtering, only the
headers of packets are checked -- which means that an attacker can sometimes
get information through the firewall simply by indicating "reply" in
the header. Stateful inspection, on the other hand, analyzes packets down to
the application layer. By recording session information such as IP addresses
and port numbers, a dynamic packet filter can implement a much tighter security
posture than a static packet filter can.
skip to main |
skip to sidebar
Search This Blog
Followers
Blog Archive
Labels
Posts
Powered by Blogger.
Archivo del blog
-
▼
2013
(883)
-
▼
December
(189)
- What is the functionality of Query Processor in Ap...
- What is ObjectInspector functionality ?
- How do you write your own custom SerDe ?
- Give examples of the SerDe classes whihc hive uses...
- Which classes are used by the Hive to Read and Wri...
- What is SerDe in Apache Hive ?
- If you run hive as a server, what are the availabl...
- Is multiline comment supported in Hive Script ?
- Is it possible to use same metastore by multiple u...
- Wherever (Different Directory) I run hive query, i...
- What is Hive Metastore?
- Sony launches My Cloud app for Android devices
- Choosing between SOAP and REST is not an easy deci...
- CEO becomes clientside developer with aid of HTML5...
- Prediction for 2014: Mobile apps will be the most ...
- New virtual networking technologies make convergen...
- 10 Worst Things to Spend Your Money On
- For the Horde! 10 Rad Jobs of the Future [infograp...
- 10 Signs You Love Your Job
- What’s New in System Center 2012 R2 Configuration ...
- What’s New In System Center 2012 R2 App Controller
- Secure all the (Internet of) Things
- Web-based malware: Why detection efforts must go b...
- DLL preloading: Making malware detection more diff...
- Correcting the misconceptions. Not all PaaS is Paa...
- Prediction for 2014: Mobile apps will be the most ...
- Average networking salary below rest of IT, but fe...
- New Dell switches offer end-to-end 1/10/40 GbE cam...
- Will the cloud exchange be the next big ecosystem ...
- Google and Yahoo lash out over reports of NSA inte...
- Can Windows EFS hinder malware detection?
- Locking the backdoor: Reducing the risk of unautho...
- How to protect corporate data after the NSA Bullru...
- Facebook seeks to get smarter with big data
- Strong challengers to Apple iPads
- Google designing its own server processors: Report
- Cisco CEO sees challenges in emerging markets
- Managing virtual network services: Lessons from im...
- Expert: Security automation can thwart attacks on ...
- News briefs: HP ends AWS EC2 support, SugarSync dr...
- RiverMeadow arms providers with cloud migration to...
- What to do when a mainframe IPL stalls out without...
- Changes to IBM VM memory management for mainframes...
- Running C++ Applications in CICS
- Can batch-compiled COBOL programs run in CICS?
- How can I reduce CPU to a CICS app?
- Improving mainframe performance with runtime and c...
- Active cyberdefense: What are the legal limitations?
- What are your top New Year's IT resolutions?
- The rise of the smart machines: Here comes the rob...
- Analytics 3.0 -- the old guard masters how to buil...
- Push for centralized IT ushers in cloud-first phil...
- 'Tis the season for IT self-service
- Rogue cloud computing: Reining in ad hoc cloud usa...
- Tools to unlock private cloud's potential
- Overcoming big data security challenges in cloud e...
- Virtual WAN optimization could speed public cloud ...
- Getting your bearings on the basics of cloud netwo...
- Business continuity moves to the cloud as applicat...
- Bandwidth issues deter HPC users from cloud services
- Cloud incident response planning: Know cloud provi...
- Winner: Best cloud computing service provider
- Hadoop
- Platform as a Service (PaaS)
- What is PaaS?
- PaaS adoption upswing predicted for 2014; will it ...
- How many VMs can vSphere vMotion move at once?
- Virtual data center challenges and management tool...
- Ask the expert: How do hypervisors control server ...
- How to approach cloud computing for business workl...
- Improving mainframe performance with runtime and c...
- Four steps to securing vCenter and the VMware virt...
- Silver Peak adds dynamic path options to hybrid WA...
- Get ready for the 12 Gbps SAS drive
- IT in 2014
- How tech will change the future of work
- After Facebook, now access Twitter on mobiles with...
- New consoles, online games to keep market soaring ...
- Online images can help create brand associations
- 3 ways to speed up your old smartphone
- Look who‘s hiring online: Hotels, spas & hospitals
- The smart shopper's guide to virtualization and cl...
- Reel in private cloud costs by practicing hypervis...
- Three reasons you'll want to employ open source cl...
- Lowering the cost of private cloud software
- Step-by-Step Guide for Configuring Failover Cluste...
- SQL Server Links
- What is Ethernet technology?
- What is CSMA and CD concept?
- Define Digital Signatures.
- What is the Public Key Encryption?
- What is Data encryption?
- What is NetBIOS protocol?
- What is IGMP protocol?
- What is HTTP (Hypertext Transfer Protocol)?
- What is NNTP (Network News Transfer Protocol)?
- What is POP3 (Post Office Protocol 3)?
- What is SNMP (Simple Network Management Protocol)?
- What is Routing Protocols?
- What is Routing table?
-
▼
December
(189)
0 comments:
Post a Comment