5.8. Additional Firewall Considerations
No matter what type of firewall you choose, you should analyze some potential features closely before selecting a specific firewall product. These features are common to all types of firewalls, so we'll review them here.
5.8.1. Address Translation
Address translation is considered a basic firewall function. Don't trust a firewall product that doesn't include this option. The conversion of an IP address from one value to another is called address translation. This feature has been implemented in most firewall products and is typically used when you do not want to let remote systems know the true IP address of your internal systems. Figure 5.11 shows the typical deployment of this configuration.
Our internal ...
Get Mastering™ Network Security, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
