eBiz Bodyguard

How To Protect Your Online Business

eBiz Bodyguard header image 1

Why You Need A Firewall

If you want to prevent a hacker from gaining access to your computer and all its files, then you need to install a firewall.

A ‘firewall’ secures your computer system by isolating it from the Internet. Its purpose is to inspect and control all data running between your computer and the Internet. It handles this in such a way that potentially dangerous occurrences are detected and dealt with. If necessary these and other occurrences are logged.

What the firewall considers as a potentially dangerous occurrence is determined by the security settings of your firewall software.

Without a firewall, whenever your computer is connected to the Internet your computer is open to attack! The threat runs from the curious browser to well-organised and technically knowledgeable intruders who can gain access to your files and interfere with the use of your computer.

A firewall works just like the security guard in an office building. He or she checks the identity and purpose of everyone who attempts to enter, logs them in when they arrive and logs them out when they leave. The guard denies access to anyone who doesn’t have permission to enter the building.

Technorati Tags: , , , , , , ,

→ No CommentsTags: antivirus·Data·FAQs Help and Tutorials·Firewall·Management Tools·Personal firewall·Products·Security

Firewalls And IP Addresses

Simulação da participação de um Firewall entre...
Image via Wikipedia

Every computer connected to the Internet has a unique address. This is called its ‘IP address’ and is very similar to the format of your home address. Your home address consists of the town/village and street where you live. Similarly, an IP address has two parts.

The first is a ‘network’ portion containing the address of the local network to which your computer is connected. The second part is the ‘host’ portion containing an identity number for your particular computer on that network.

If you dial-in to your ISP then you may be allocated a different IP address every time you log on. If you have a broadband connection however, you’ll be allocated a ’static’ IP address that remains the same every time you connect to the Internet.

Information travels backwards and forwards across the Internet in small chunks of data that are called ‘IP packets’. Every IP packet contains all the information it needs to travel from its source computer to its destination computer. This ‘addressing’ information consists of five pieces:

The IP address of the destination computer The IP address of the source computer The destination port number The source port number The transfer protocol used

These IP packets are associated in groups. Each group having the same address information is called a ’session’. The address information allows millions of sessions to be distinguished from each other.

Now that you understand IP addresses, packets and sessions, you’ll find it a little easier to understand how a firewall works.

Technorati Tags: , , , , , , ,

→ No CommentsTags: Broadband·Firewall·Internet Protocol·Internet service provider·IP address·Local area network·Packet·Protocols

How Does A Firewall Work?

You may want to read the previous post first to get a handle on what packets are. This article will then make more sense for you.

There are two main types of firewall:

  • Packet Web Filter
  • Application Level Gateway

A Packet Web Filter has no knowledge of the existence of sessions. So it deals with each packet individually and independently of any other packets that make up the same session.

The simplest type of packet filter, works on the basis of the address information it finds in each packet. It compares this information against its security settings. And like a building security guard, it either allows a packet to pass or prevents its entry.

Packet filtering security is primarily limited to two conditions:

1. Granting access based on the IP address of the computer attempting the connection. It can either allow access to all but a few IP addresses, or deny access to all but a few IP addresses. The user sets the addresses it does or doesn’t allow in the security settings.

2. Restricting access based on the Internet service that produced a packet. For example, the packet filter can be set to disallow all Telnet access, but allow the transmission and receipt of email.

These two conditions can be combined to produce specific security conditions. For example, Telnet access can be granted to certain trusted IP addresses.

Packet filtering is easy to set up and install and it’s also fast. However, it can’t detect or prevent attacks using the software applications on your computer and doesn’t hide your computer from being seen by everyone else on the Internet.

The Application Level Gateway is fully aware of the existence of sessions and processes each packet in full knowledge of the session that the packet is associated with.

It doesn’t just ‘filter’ packets and sessions, but acts as a gateway between your computer and the Internet. Packets that pass its security check are unpacked and then repacked before being allowed to proceed. It’s like a customs officer checking your bags at an airport. It strips the address information from each packet and replaces it with its own. The packets now appear to have been produced by the gateway itself.

It does this to hide the real originator of the packet, your computer, from the destination computer. In this way, your computer becomes invisible to all other computers on the Internet. This provides an additional level of security to that achieved by packet filtering alone. It’s very difficult to hack a computer that doesn’t exist!

The gateway may also incorporate application level filtering. There are known security weaknesses in several Internet applications that you may use on your computer. Any packet the gateway receives that tries to exploit one of these is prevented access.

Technorati Tags: , , , , , , ,

→ No CommentsTags: Addressing·Application Level Gateway·Firewall·IP·IP address·Products·Protocols·Security