filed in Network Security, Security on Feb.10, 2009
- Session layer firewalls are also known as Circuit level firewalls or circuit gateways.
- Session layer firewalls operate at the TCP layer of the OSI model.
- Session layer firewalls use NAT (Network Address Translation) to protect the internal network and these gateways have little or no connection to the application layer, thus cannot filter more complicated connections.
- Session layer firewalls protect traffic on a basic rule base like source destination port.
- Session layer firewalls applies security mechanisms when a TCP or UDP connection is established. Once the connection has been made, packets can flow between the hosts without further checking
- Application layer filtering can understand certain applications and protocols (such as File Transfer Protocol, DNS, or web browsing), and it can detect whether an unwanted protocol is being sneaked through on a non-standard port or whether a protocol is being abused in any harmful way.
- Application layer firewalls tend to provide more detailed audit reports and tend to enforce more conservative security models than network layer firewalls.
Blogged with the Flock Browser
