Please enable JavaScript.
Coggle requires JavaScript to display documents.
FIREWALL ARCHITECTURE (Screened-Host Architecture (A.k.a dual-homed…
FIREWALL ARCHITECTURE
Screened-Host Architecture
A.k.a dual-homed gateway or bastion host.
Requires two network interfaces.
Resides on the perimeter of the network.
Places a router that performs packet filtering between the screened host and the Internet.
Differs from bastion hosts and dual-homed hosts on the basis of strong security services.
Dual-Homed Host Architecture
build around a dual-homed host computer.
PC connecting to the Internet that has two NICs and secured by firewall.
By default it disable packet flow through the network.
Limitation:
Passwords can be cracked
Single protection layer
Screened-subnet Architecture
Network exposed to external network but partially secured with firewall.
Service network or perimeter network:
Subnet in DMZ that is attached to a firewall
Three-pronged firewall is the firewallin a DMZ that connects to three distinct networks:
DMZ screened subnet
LAN
External network
