Firewall Update/Demo by Tim Urban • Two types of firewalls: packet filtering and statefull packet filtering • A firewall enforces access control policy between networks. Packet filtering device does ACLs; statefull packet filtering maintains a state table. Can allow in any address (or only addresses) that was sent to from within firewalled network. • All 5 dist nodes have the campus firewall, plus the Data Center and the WAN. • Lan Admins would have their own firewall running inside the larger campus firewall. This is free. • Performance: 5.5 Gbps throughput Basic template for use: default is deny all (per ISO). Dave Huth: if the use of these firewalls becomes prevalent across the University, we need to be careful to coordinate what is left open. Example: faculty teaching at multiple locations on campus need to be able to get access. We can't restrict the business of the University (video-on-demand). Must decide together what gets blocked and what should be allowed.
Multimedia Center, Marriott Library
Digital version copyright 2007, University of Utah. All rights reserved.
Multimedia Center, Marriott Library, University of Utah