1 / 7

QMCS 490 - Class Today

QMCS 490 - Class Today. Working the Internet Routing Firewalling in general NAT. Working the Internet. Layers again What layers are needed? Division of labor What part does the Internet itself do? What jobs fall on host computers? End-to-end concept; smart vs dumb. Routing.

howell
Download Presentation

QMCS 490 - Class Today

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. QMCS 490 - Class Today • Working the Internet • Routing • Firewalling in general • NAT R. Smith - University of St Thomas - Minnesota

  2. Working the Internet • Layers again • What layers are needed? • Division of labor • What part does the Internet itself do? • What jobs fall on host computers? • End-to-end concept; smart vs dumb R. Smith - University of St Thomas - Minnesota

  3. Routing • How it happens • Routing tables • Setting up routing tables • Persistence, “time to live” R. Smith - University of St Thomas - Minnesota

  4. Firewalls • Firewall objectives • Provide outbound Internet access • Restrict/forbid inbound connections • Detect and block malicious traffic • Types of firewall traffic control • Service control (allow specific protocols) • Direction control (in/out) • User control (source/destination) • Behavior control (bandwidth, application specific) • 3 types of firewall filtering • Packet filtering • Connection filtering • Application filtering R. Smith - University of St Thomas - Minnesota

  5. Network Address Translation • Original purpose: more hosts & addresses • Let “insiders” use restricted addresses • Translate them on the way out • A ‘multiplexing’ mechanism • Users share a “real” Internet address R. Smith - University of St Thomas - Minnesota

  6. Firewalls and LAN support • Provide a few standard LAN services • Router connection • DHCP R. Smith - University of St Thomas - Minnesota

  7. That’s it • Questions? Creative Commons License This work is licensed under the Creative Commons Attribution-Share Alike 3.0 United States License. To view a copy of this license, visit http://creativecommons.org/licenses/by-sa/3.0/us/ or send a letter to Creative Commons, 171 Second Street, Suite 300, San Francisco, California, 94105, USA. R. Smith - University of St Thomas - Minnesota

More Related