A firewall's basic task is to regulate the flow of traffic between computer networks of different trust levels. Typical examples are the Internet which is a zone with no trust and an internal network which is a zone of higher trust. A zone with an intermediate trust level, situated between the Internet and a trusted internal network, is often referred to as a Demilitarized zone (DMZ).
Without proper configuration, a firewall can often become worthless. Standard security practices dictate a "default-deny" firewall ruleset, in which the only network connections which are allowed are the ones that have been explicitly allowed. Unfortunately, such a configuration requires detailed understanding of the network applications and endpoints required for the organization's day-to-day operation. Many businesses lack such understanding, and therefore implement a "default-allow" ruleset, in which all traffic is allowed unless it has been specifically blocked. This configuration makes inadvertent network connections and system compromise much more likely.
To help you in this respect, all the Defzone products have the default setting that all connections from the outside world are closed. When you make changes to the configuration, the security implications are always clear, because every exception on the general rule stands out clearly.
|
Related websites:
- http://en.wikipedia.org/wiki/Firewall
|
Solutions we offer:
- Defzone 300sg
- Defzone 500utm
- Defzone 500mg
- Defzone 500ssl
- Defzone 700utm
- Defzone 700mg
- Defzone 700ssl
- Defzone 700pg
- Defzone 1650utm
- Defzone 1650mg
- Defzone 1650ssl
- Defzone 1650eg
|
