I have a very basic question. Is cisco PIX an Application level firewall or Packet level firewall?
- posted
18 years ago
Is Cisco PIX Application level firewall or Packet level firewall?
Loading thread data ...
- Vote on answer
- posted
18 years ago
It's a Stateful Inspection firewall.
Chris.
- Vote on answer
- posted
18 years ago
Packet firewall
- Vote on answer
- posted
18 years ago
In article , coin wrote, without providing any context :(
:Packet firewall
The question was whether the PIX was an application level firewall or a packet firewall.
The answer is that it runs at layer 5 or so -- a protocol level firewall. Most of what it does, it handles at layer 4, but there are some things it handles at layer 5, such as SMTP inspection, FTP port handling, and URL inspection. For SMTP and HTTP, it reassembles packets to prevent attacks from slipping by by splitting them between packets. For SMTP, it filters the complete layer 5 conversation, permitting only those commands that are on its internal allowed list.
PIX 6.x has no anti-virus, and does not attempt to do anything like validate SQL queries against an authorization schema.