PrepAway - Latest Free Exam Questions & Answers

Which of the following types of firewalls provide the GREATEST degree and granularity of control?

Which of the following types of firewalls provide the GREATEST degree and granularity of control?

PrepAway - Latest Free Exam Questions & Answers

A.
Screening router

B.
Packet filter

C.
Application gateway

D.
Circuit gateway

Explanation:

The application gateway is similar to a circuit gateway, but it has specific proxies for each service.
To handle web services, it has an HTTP proxy that acts as an intermediary between externals and
internals, but is specifically for HTTP. This meansthat it not only checks the packet IP addresses
(layer 3) and the ports it is directed to (in this case port 80, or layer 4), it also checks every HTTP
command (layers 5 and 7). Therefore, it works in a more detailed (granularity) way than the others.
Screening router and packet filter (choices A and BJ work at the protocol, service and/or port level.
This means that they analyze packets from layers 3 and 4, and not from higher levels. A circuit
gateway (choice D) is based on a proxy or programthat acts as an intermediary between external
and internal accesses. This means that during an external access, instead of opening a single
connection to the internal server, two connections are established-one from the external server to
the proxy(which conforms the circuit-gateway) and one from the proxy to the internal server.
Layers 3 and 4 (IP and TCP) and some general features from higher protocols are used to perform
these tasks.


Leave a Reply