Sunday, January 13, 2013



firewall can either be software-based or hardware-based and is used to help keep a network secure. Its primary objective is to control the incoming and outgoing network traffic by analyzing the data packets and determining whether it should be allowed through or not, based on a predetermined rule set. A network's firewall builds a bridge between an internal network that is assumed to be secure and trusted, and another network, usually an external (inter) network, such as the Internet, that is not assumed to be secure and trusted.

Many personal computer operating systems include software-based firewalls to protect against threats from the public Internet. Many routers that pass data between networks contain firewall components and, conversely, many firewalls can perform basic routing functions.

With the new Smart Wi-Fi Routers, users will enjoy incredibly fast Wi-Fi speeds with exceptional in-house Wi-Fi coverage. With simplified installation that can be completed in a matter of minutes, VPNs, Nexwrx will have your home devices connected in no time. The routers offer new tools for home network monitoring and control, and new mobile apps for anytime, anywhere remote access of files, photos, videos, music and more.

For home network devices we use Cisco firewall routers.  Learn more.

Types of Business Class Firewalls

Network-Level - Firewalls that work at the network level inspect packet headers and filter traffic based on the source and destination computer's IP address, the port used and the service requested. The first commercially available network protection devices were network-level firewalls. These firewalls also could monitor and filter traffic based on different protocols, a specified domain name or other attributes associated with a source. Most modern routers contain network-level firewalls, but they do not understand languages such as hypertext markup language (HTML) or extensible markup language (XML).

Circuit-Level Gateway - The circuit-level gateway firewall works at the session layer of the open systems interconnection (OSI) model or at the transmission control protocol/Internet protocol layer (TCP/IP). Circuit-level gateway firewalls determine the legitimacy of a requested session by monitoring the handshake between packets. The handshake process consists of three steps--device one sends specific segments of information, combined in a packet, to device two; device two responds to device one with its specific packets of information; and then device one acknowledges and validates receipt of the information. A circuit level firewall can hide the network from the outside world and also restrict the session rules to known computers. Typically, circuit-level gateways cost less than other forms of firewall protection.

Application-Level Gateway - Application-level gateways, most commonly known as proxies, work in a similar fashion as the circuit-level gateway except they work on specific applications. Application-level gateways protect the network from malicious attacks, spam and viruses. Application-level gateways configured as a web proxy do not allow ftp, gopher, telnet or any other traffic through the firewall. These firewalls also block websites based on content and not a website's IP address. Because application-level gateways thoroughly examine packets of data, it takes longer for information to pass through these firewalls. Application-level gateways also require manual configuration on each user system and have zero transparency to the user.

Stateful Multilayer Gateways - Stateful multilayer (SML) gateways offer the best features of the three other firewall types--they filter packets at the network layer, they determine packet legitimacy and they evaluate packet contents at the application layer. SML gateways also provide a direct connection between the host and the client. This allows for transparency at the user level, unlike the application-level gateway. Because SML gateways do not use proxies, they work faster than their application-layer counterparts. But because they still offer the deep inspection of an application-layer gateway, they typically cost more.

Business or Upgraded Security for Home Class Firewall

For upgraded security at home or Business class firewall protection we suggest using a Dell SonicWall Firewall for hardwired and Cisco Sonic Access Point for wireless. Depending on how you use technology will define what you need for enhanced security and protection. 

ICSA Labs (International Computer Security Association) began as NCSA (National Computer Security Association). Its mission was to increase awareness of the need for computer security and to provide education about various security products and technologies.  ICSA Labs is currently an independent division of Verizon Business providing resources for research, intelligence, certification and testing of products, including anti-virus, firewall, IPsec VPN, cryptography, SSL VPN, network IPS, anti-spyware and PC firewall products.

Dell SonicWALL is the only firewall to receive the ICSA Labs Enterprise Firewall Certification and ICSA Labs Next-Generation Firewall Evaluation.  Learn more.


Using AVG protection for a few years, I would recommend this solution to you all.

Post a Comment

Twitter Delicious Facebook Digg Stumbleupon Favorites More