1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Application Firewalls

Discussion in 'Computer Security' started by zimbo, Oct 11, 2008.

  1. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    What is the difference between an Application level firewall and an Application Level Gateway? OR are they the same thing? :blink My reasoning is that the application firewall becomes a gateway or proxy (its how it works?) or have i missed something - if someone has some reading material for me online its much appreciated thanks! 8)
     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics
  2. Mr.Cheeks

    Mr.Cheeks 1st ever Gold Member! Gold Member

    5,369
    85
    190
    Application layer firewall


    Application-level gateway
     
  3. onoski

    onoski Terabyte Poster

    3,120
    51
    154
    Microsoft's inbuilt firewall on Windows server 2003, wins xp and windows 2000 pro are examples of stateless firewall as these check simple tcp/ip packet routes.

    However, stateless firewall is not as drastic when it comes to what is allowed and what isn't of it's own default settings unless a rule is configured.

    On the other hand a stateful firewall as an example is the Cisco pix 500 series, sonicwall and the list goes on as they are more fussy in terms of what is allowed through the tcp/ip protocol stack. Cheerio and hope this helps.
     
    Certifications: MCSE: 2003, MCSA: 2003 Messaging, MCP, HNC BIT, ITIL Fdn V3, SDI Fdn, VCP 4 & VCP 5
    WIP: MCTS:70-236, PowerShell
  4. zebulebu

    zebulebu Terabyte Poster

    3,748
    330
    187
    There isn't really a great deal of difference between them Zim. Technically, its usually accepted that an ALG is 'seamless' - i.e. once in place it doesn't require any further configuration to make it work; whilst an ALF is basically a proxy, which means you need to configure something else (client) to get it to function.

    You generally tend to find ALGs are built into firewalls. For instance, all enterprise firewall vendors implement ALGs for FTP because FTP needs to be 'session aware' as, whilst port 21 is used as the control port for FTP communications it creates ephemeral high ports for the actual data transfer.

    ALFs are usually either sepearte programs/applications, or are added-on functions in a firewall (usually paid for by subscription or as licensed extra modules)

    In practice though, despite these theoretical differences, there's very little difference between what an ALG and an ALF do - they firewall traffic at layer 7 (or below, depending on the application being used)
     
    Certifications: A few
    WIP: None - f*** 'em
  5. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    Thanks for the input guys! :biggrin
     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics
  6. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    how does this sound?

     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics
  7. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    Bump! :rolleyes:
     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics
  8. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    cant anyone verify what i written please guys? :(
     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics

Share This Page

Loading...