|
Web server, mail….(traffic to Internet)
|
səhifə | 35/43 | tarix | 02.01.2022 | ölçüsü | 446 b. | | #32251 |
| Web server, mail….(traffic to Internet) Application server (hidden behind a FW) …
PAT : Port Address Translation (I)
PAT : Port Address Translation (II) Translation table Use of lesser public addresses
Masking (I)
Masking (II) Connections are open by internal hosts Dynamic connection table (IP address + source port number) One single address is known outside (the FW address) Spare IP addresses
Hacking… and security tools (I) Network auditing (probing) Network/Host Intrusion Detection Systems (NIDS/HIDS) - NIDS can be put before the FW, on the DMZ, on the internal network
- NIDS are based on intrusion signatures and statistics (abnormal behavior)
- HIDS on sensitive hosts e.g. bastions, application servers
Dostları ilə paylaş: |
|
|