Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: WHAT is Application inspection ???

WHAT is Application inspection ??? 12 years 4 months ago #4468

  • NutE
  • NutE's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
hi guys,

i have a pix 525 firewall... i've been reading about it .. and i reached the "application inspection" part which i can't quite understand it's use.!!!!

can anyone explain it in a simple understandable way???

NutE, Over and Out !!!!
The administrator has disabled public write access.

Application Inspection 12 years 4 months ago #4480

  • TheBishop
  • TheBishop's Avatar
  • Offline
  • Moderator
  • Posts: 1719
  • Thank you received: 8
  • Karma: 5
Basically it's a set of application-specific proxies on your firewall. So rather than just making firewall decisions based on IP address or port etc, the firewall "understands" the application-layer protocol being used and knows what is normal behaviour during an HTTP or FTP or SMTP transaction and so will enforce the rules. This means it can detect and block some types of attack that a normal firewall would miss. Also, because it is a proxy, it sits between the sender and recipient, intercepting then passing on the requets and replies at an application level. This in itself adds security too. Many of the higher-end firewall products provide application proxy facilites you can turn on or off as required. The label "Application Inspection firewall" in essence just describes a firewall with those kind of facilities in it's arsenal
Hope that helps...
The administrator has disabled public write access.

Re: WHAT is Application inspection ??? 12 years 4 months ago #4500

  • NutE
  • NutE's Avatar
  • Offline
  • New Member
  • Posts: 2
  • Karma: 0
thanks man .. that was really helpfull :D
The administrator has disabled public write access.

Re: WHAT is Application inspection ??? 12 years 4 months ago #4508

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
TheBishop is right.. basically you have different filtering devices that work at different levels of the OSI model.. for example a router with ACL's is a simple packet filter operating at the network level.. a stateful inspection firewall which understands TCP will be a circuit level gateway and will control traffic at the transport layer.. then you have application proxies.. which will handle your mail / ftp / http etc and understand the protocol so you can filter based on criteria within that protocol right at the application level itself.

Cheers,
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.
Time to create page: 0.086 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup