Common OSI layer filtering for network based firewalls - filtering at the transport layer
. Advanced OSI layer filtering for network based firewalls - newest ones filter all the way up to the application layer
. The router acts as the network firewall - this is the network device layer for the router
. Layer for the switch. Does not keep track of traffic and past history going through the FW - so you need rules going both directions - it doesn't know what previous passed in so doesn't know what to let out
. It knows each active session in and out though a session table and so doesn't need seperate rules - most common type, these days
. List of rules within a firewall or router - security policies - basically variables called tuples that either allow or disallow traffic
. The rule at the bottom of the ACL - means if the traffic doesn't match any of the rules, drop it
. Protect websites and webservers against malware such as XSS and intrusions
.