whizlab question

- F
- fmarchioni
  
  Contact options for registered users
posted
18 years ago

Fri, Dec 16, 2005 8:35 AM

Hi all, I'm going to attend an application server architect exam. In this exam there are some network/security questions too.

One of these is the following:

What type of firewall will you use to the validate the application protocol of a network communication? =B7 a. SSL =B7 b. Packet Filters =B7 c. Stateful packet Filters =B7 d. Proxy

I think, since application protocols are tied to a known port it could enough a static packet filter, that checks if the packet is going through one certain port.....

What do you say ?

Thanks a lot Francesco

Loading thread data ...

- W
- Walter Roberson
  
  Contact options for registered users
Vote on answer
posted
18 years ago

Fri, Dec 16, 2005 9:03 AM

An application protocol would be, for example, that an SMTP "RCPT TO" command does not occur until after a "MAIL FROM" command. Static packet filters are not able to check that.

SSL is not a firewall: it is a secure transport mechanism. It doesn't care whether what is sent over it matches the application protocol or not.

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.