11.2 Firewall Architecture
Firewall architecture is a layering concept and involves the concept of defense-in-depth. For example, we can use a packet filtering router to screen connections to a bastion host that is used to inspect whatever gets through the screen before delivering it into an interior network and the systems that reside therein. In many cases, this is a sufficient level of protection, such as for a web server exposed to the Internet that displayed only content. However, if systems are to perform transactions such as those in e-commerce, we need to better protect both the customer information and our internal resources. For that kind of activity, we are likely to need more stringent countermeasures.
11.2.1 Belt and Braces Architecture ...
Get Information Security Management, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
