Difference between revisions of "Firewall"
Jump to navigation
Jump to search
↑ https://arstechnica.com/information-technology/2016/01/et-tu-fortinet-hard-coded-password-raises-new-backdoor-eavesdropping-fears/
Tags: Mobile web edit, Mobile edit |
Tags: Mobile web edit, Mobile edit |
||
Line 40: | Line 40: | ||
* [[Port knocking]] | * [[Port knocking]] | ||
* [[DMZ]] | * [[DMZ]] | ||
− | * [[Bastion | + | * [[Bastion host]] |
== See also == | == See also == |
Revision as of 06:49, 1 September 2020
A firewall is a network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.
Major vendor providing firewall solutions includes
- AhnLab (KR)
- Barracuda Networks
- Check Point (1993)
- Cisco: Cisco ASA
- F5
- Forcepoint
- Fortinet (2000): Fortigate (FortiOS)
- Hillstone Networks (2006)
- Huawei
- Juniper Networks (1996) (JunOS and ScreenOS)
- New H3C Group
- Palo Alto Networks (2005)
- Sangfor (CN)
- SonicWall
- Shopos (UK)
- Stormshield
- Venustech (1996)
- WatchGuard
Gartner MQ reports:
- September 2019 https://www.gartner.com/en/documents/3961528/magic-quadrant-for-network-firewalls
- October 2018 https://www.gartner.com/en/documents/3891177/magic-quadrant-for-enterprise-network-firewalls
Related Topics: Software solution vs Hardware Solutions, Stateful vs stateless inspection, ACLs, Firewall placement: Internal, External
Threats protection
- Denial of service (DoS)
Backdoors
In 2016 security researchers found a SSH backdoor in FortiOS.[1]
Related terms
See also
- OS: PAN-OS, FortiOS, SonicOS, IPFire, JunOS
- DMZ, Port knocking, Bastion host, Firewall Software:
iptables
ufw
firewalld
nftables
firewall-cmd
ipfw (FreeBSD)
PF (OpenBSD)
, netsh advfirewall, PAN-OS, WAF, pfsense, VyOS, Cisco ASA, DMZ, F5, URL Filtering, port forwarding, macOS application firewall, Windows firewall, Fortigate, ngrok, Network ACL - Traffic shaping: Network bandwidth,
tc
, PacketShaper, Traffic QoS, IEEE P802.1p,Netperf
- Security: Security portfolio, Security standards, Hardening, CVE, CWE, Wireless Network Hacking, vulnerability scanner, Security risk assessment, SCA, Application Security Testing, OWASP, Data leak, NIST, SANS, MITRE, Security policy, Access Control attacks, password policy, password cracking, Password manager, MFA, OTP, UTF, Firewall, DoS, Software bugs, MITM, Certified Ethical Hacker (CEH) Contents, Security+ Malware, FIPS, DLP, Network Access Control (NAC), VAPT, SIEM, EDR, SOC, pentest, PTaaS, Clickjacking, MobSF, Janus vulnerability, Back Orifice, Backdoor, CSO, CSPM, PoLP, forensic, encryption, Keylogger, Pwn2Own, CISO, Prototype pollution
Advertising: