• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 383
  • Last Modified:

looking for firewall experts.

Hi
I need to know the deference between the state full and state less firewall...

and in case you open rule from A to B..do u need to open same rule again from B to A or it will be a threat.

cheers.
0
besmile4ever
Asked:
besmile4ever
2 Solutions
 
jdc1944Commented:
Is there any specific differences you want to know about Stateless and Statefull Firewalls?

Simply the difference between the two are that stateless firewalls inspect each packet with the firewall rules and looks at the IP source and destination addresses.  Whereas statefull firewalls monitor the traffic from end - to - end and are aware of the state of connections such as whether they are open, they can also look at other information in the packets because they inspect the IP source and destination address as well as looking at the protocols that are being used.
0
 
WayneATaylorCommented:
In basic terms, a stateless firewall just looks at each packet as an individual check, i.e. based on port or type (UDP/TCP) and either allows it or not, with no reference to other packets.

A statefull firewall is one that does the above, but has the added function that is works up to layer 4 of the OSI Model and can look at other packets as a whole communication stream and make blocking decisions based on say know exploits etc, using packets of the whole conversation.

Regarding opening up A to B and then also B to A, you would normally open both for most traffic types, for way SMTP email send and recieve it would need to be both ways, and Web traffic would need both ways.  But this does depend on your actual circumstances as some systems listen on one port and repond on another, so you would need one port in and the second port det for outbound.

Wayne



0
 
besmile4everAuthor Commented:
thnks.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now