Firewall Wizards mailing list archives

Re: Firewalls that generate new packets..

From: jdgorin () computer org
Date: Tue, 20 Nov 2007 14:33:19 +0100

Timothy Shea wrote:

What I believe you are referring too when you talk about
"generate a new packet ... " is a proxy firewall.  This is a
piece of code that will take the original packet, suck out
the contents, (the content may be inspected at this point but
rarely happens), build a new packet, blow the content back
into the new packet, and send it along its way


Sorry Timothy, but if you refer to proxies firewall, the content *have to* be
inspected because proxy are at the application level...

The received packet goes up all the stack from IP to application level (HTTP,
SMTP, FTP, whatever...), then in an application gateway (it's just a new word
for a proxy, and it's the part which analyze, or inspect, the packet's content
compliance with the protocol definition and the security rules to enforce) then
a new protocol data unit goes out the application gateway and sends down the
stack to the IP level.
So, it's a full new packet going out of the proxy firewall.

Usually, deep packet inspection firewalls (a flavor of packet filters) do what
you describe.

JDG
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Firewalls that generate new packets.., (continued)
- - - Re: Firewalls that generate new packets.. Paul D. Robertson (Nov 23)
    - Re: Firewalls that generate new packets.. Patrick M. Hausen (Nov 25)
    - Re: Firewalls that generate new packets.. Dave Piscitello (Nov 25)
    - Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 26)
    - Re: Firewalls that generate new packets.. Paul Melson (Nov 25)
- Re: Firewalls that generate new packets.. pkc_mls (Nov 19)
- Re: Firewalls that generate new packets.. lordchariot (Nov 21)
  - Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 23)
- Re: Firewalls that generate new packets.. jdgorin (Nov 21)
  - Re: Firewalls that generate new packets.. Dave Piscitello (Nov 21)
- Re: Firewalls that generate new packets.. jdgorin (Nov 21)
- Re: Firewalls that generate new packets.. Bill McGee (bam) (Nov 25)
  - Re: Firewalls that generate new packets.. Paul D. Robertson (Nov 25)
    - Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 25)
    - Re: Firewalls that generate new packets.. Marcin Antkiewicz (Nov 26)
    - Re: Firewalls that generate new packets.. Paul Melson (Nov 26)
    - Re: Firewalls that generate new packets.. Jim Seymour (Nov 26)
    - Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 26)
    - Re: Firewalls that generate new packets.. Jim Seymour (Nov 26)
    - Re: Firewalls that generate new packets.. Darren Reed (Nov 28)
    - Re: Firewalls that generate new packets.. Marcus J. Ranum (Nov 28)

(Thread continues...)