Solved

Zone based firewalls

Posted on 2011-02-18
2
412 Views
Last Modified: 2012-05-11
I am new to the world of firewalls... and going over the ZBFWs. I am not sure what is the motive for creating such a FW, I see am example where the INSIDE and outside are grouped as int zones and the traffic is inspected with policy maps, all within a router. Well, all this could be done with prev int based ACL rules. What is something that is pushing for the need to have ZBFWs.

thanks,
0
Comment
Question by:totaram
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 6

Accepted Solution

by:
PJBX earned 125 total points
ID: 34931178
I've not used ZBFWs in a production environment, but "supposedly" a ZBF is more robust than simply controlling access.

It allows you to inspect traffic and block any traffic with potentially malicious code. By creating the zones, you can set additional rules based on your group/zones

0
 

Author Comment

by:totaram
ID: 34933310
Good logic, but everything is still within a router, how does it prevent any attacks...
0

Featured Post

Enroll in June's Course of the Month

June's Course of the Month is now available! Every 10 seconds, a consumer gets hit with ransomware. Refresh your knowledge of ransomware best practices by enrolling in this month's complimentary course for Premium Members, Team Accounts, and Qualified Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The conference as a whole was very interesting, although if one has to make a choice between this one and some others, you may want to check out the others.  This conference is aimed mainly at government agencies.  So it addresses the various compli…
There is a lot to be said for protecting yourself and your accounts with 2 factor authentication.  I found to my own chagrin, that there is a big downside as well.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question