(download the .pdf for our Forstle Firewall)
Firewalls prevent intruders from accessing your network without authority while IP filters prevent office personnel from accessing non-work related web sites which can lead to the downloading of files that can contaminate your office PC's. Firewalls and IP Filters can help to reduce your exposure to this intrusion by limiting your inbound and outbound traffic via policies set up by the I.T. Administrator.
Our firewall can be configured as a router. It supports packet filtering, masquerading and NAT. The firewall also has a packet “mark” feature, which is used to mark packet flows for the standard queuing process and bandwidth allocation. We offer firewall products with the below listed features:
The criteria for deciding which IP packets will be allowed to flow through the packet filtering router. The rules are defined based on the network security policy of the enterprise. Rules will be based on information in the packet such as:
- IP source and destination addresses
- TCP or UDP source and destination ports
When a packet meets certain conditions, a specified action is carried out (route or drop the packet).
IP masquerading lets you use a single Internet-connected computer with a real IP address as a gateway for non-connected machines with "fake" IP addresses. The firewall handles mapping packets from your intranet out to the Internet, and when responses come back, it maps them back to your intranet. This lets you browse the web and use other Internet functions from multiple machines without having a special network setup from your ISP.
Every action performed by your firewall can be logged, showing whether or not packets were forwarded or dropped. This gives you the opportunity to make better decisions when editing or adding rules.
Network Address Translation
The basic purpose of NAT is to multiplex traffic from the internal network and present it to the Internet as if it was coming from a single computer having only one IP address. The TCP/IP protocols include a multiplexing facility so that any computer can maintain multiple simultaneous connections with a remote computer. It is this multiplexing facility that is the key to single address NAT.
This helps ensure security since each outgoing or incoming request must go through a translation process and does not allow the internal address to go beyond the firewall.
NetDefender offers custom-built solutions to your firewall needs. Our firewalls are can be dedicated systems specialized for your network, scaled to fit your requirements or can be a software-based solution for home/home office users.