Question

Imagine your class has been hired to secure the network of a relatively small public school system. The system's network(s) includes administrative offices, classroom computers, Web servers, e-mail servers, and other typical features. Your class decides that multiple layers of firewall protection are required. As a group, discuss the firewall options described in this chapter and decide which ones to use. Where would you place each type of firewall, and why?

Answer 1

Answer:
Multiple firewalls are commonly wont to segrgate networks of various sensitivity level. as an example in above example sensitivity level of email servers and web servers would vary from that of classroom computers and administartive office. Lists of firewalls that would be needed are given below:

Border Firewall : It forms the essential firewall which can surround a loose perimeter round the entire network, providing basic degree of protection to the entire network of the varsity .

For data centers and research labs separate firewalls are going to be provisioned which further restricts from getting access to those divisions.

Packet Filtering Firewall : It uses simple rule to guage each packet they encounter and that they perform basic header inspections. They maintain no history from packet to packet. i will be able to be using Packet filtering firewall for administrative offices and classroom computers.

Application Proxy Firewall : It contains the higest level of inteligence, it not only does stateful inspection of the packet, but it acts as a broker between server and client and let client request undergo as long as packets are validated. i will be able to be using this firewall to guard web servers of the varsity network.

Stateful Inspection Firewall : They track three way TCP handshake and validates that session is established from the domain which they're claiming to be. i will be able to be using this firewall for shielding our email server.

Email Firewall : aside from above firewall for email server i will be able to be installing email firewall also for email server, which acts as spam filter and undergo the message and smap messages are often blocked or flaged at this layer itself.