Firewall Wizards mailing list archives

Re: Air Gap vs. firewall

From: Joseph S D Yao <jsdy () cospo osis gov>
Date: Fri, 22 Sep 2000 20:29:45 -0400

On Thu, Sep 21, 2000 at 04:39:35PM +0000, a burbatsky wrote:

I am trying to get a handle on the difference between an air gap appliance 
and a firewall.

In an article in Information Security magazine, 
(//www.infosecuritymag.com/july2000/coverstory.htm)the article defines the 
following:

A firewall is the logical disconnection of two physically connected net 
works, while a gap is a physical disconnection of two logically connected 
networks.

Is this semantics or is there a real difference between the two?


Logical:

             _____
---------NIC|_____|NIC---------
             ^Proxy servers block IP flow and initiate new connections
              on the other side.  NO IP FLOW AT ALL between sides.

Physical:

             _____             _____
---------NIC|_____|  floppy   |_____|NIC------

-- 
Joe Yao                         jsdy () cospo osis gov - Joseph S. D. Yao
COSPO/OSIS Computer Support                                     EMT-B
-----------------------------------------------------------------------
This message is not an official statement of COSPO policies.

_______________________________________________
Firewall-wizards mailing list
Firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards

Current thread:

Air Gap vs. firewall a burbatsky (Sep 22)
- Re: Air Gap vs. firewall Marcus J. Ranum (Sep 22)
- Re: Air Gap vs. firewall Crispin Cowan (Sep 23)
- RE: Air Gap vs. firewall Ofir Arkin (Sep 23)
- Re: Air Gap vs. firewall Joseph S D Yao (Sep 23)
- <Possible follow-ups>
- Re: Air Gap vs. firewall Steven M. Bellovin (Sep 23)
- RE: Air Gap vs. firewall David Bovee (Sep 23)
- Air Gap VS. Firewall Campbell Family (Sep 25)
  - Re: Air Gap VS. Firewall Crispin Cowan (Sep 26)
    - Re: Air Gap VS. Firewall Marcus J. Ranum (Sep 26)
- RE: Air Gap VS. Firewall Paz (Sep 26)