The difference between a gatekeeper and a firewall is: 1. The firewall first ensures network connectivity, and then considers security issues. The gatekeeper exchanges data on the basis of ensuring security; 2. The firewall is a single-host architecture, and the gatekeeper It is a dual-host architecture; 3. The gatekeeper is more secure than the firewall synchronization function.
The operating environment of this tutorial: Windows 7 system, Dell G3 computer.
The differences are as follows:
1. Differences in application scenarios
Firewall: The firewall must first ensure the connectivity of the network, and then the security issue;
Gatekeeper: The gatekeeper exchanges data on the basis of ensuring security. The two networks already exist. Now the two networks have to be interconnected, and the interconnection must ensure security. The gatekeeper is the only safest product for network boundary security isolation. Only a product like the gatekeeper can solve this problem, so A gatekeeper is required.
2. Hardware difference
The firewall is a single-host architecture, which used packet filtering technology in the early days. The gatekeeper is a dual-host 2 1 architecture. Data is exchanged through private protocol ferrying, based on The session detection mechanism, because the gatekeeper has a dual-host structure, even if the external network is compromised, it cannot attack the internal network because it uses private protocols to communicate internally. The firewall has a single-host structure. If it is attacked, it will cause the internal network to Completely exposed to others.
3. Function difference
The gatekeeper mainly includes two categories of functions, access functions and synchronization functions. The access functions are similar to firewalls, and gatekeepers are more secure than firewalls. Higher is the synchronization function.
Related expansion introduction:
The so-called "firewall" refers to a method of separating the intranet from the public access network (such as the Internet). It is actually a method built on Applied security technology and isolation technology based on modern communication network technology and information security technology. It is increasingly used in the interconnection environment between private networks and public networks, especially when accessing the Internet network.
Firewalls mainly use hardware and software to create a protective barrier between the internal and external network environments, thereby blocking unsafe computer network factors. Only with the consent of the firewall can users enter the computer. If they do not agree, they will be blocked from the outside. The alarm function of the firewall technology is very powerful. When external users want to enter the computer, the firewall will quickly send out a response. alarms, remind users of their behavior, and make their own judgments to decide whether to allow external users to enter the interior. As long as they are users in the network environment, this kind of firewall can conduct effective queries and at the same time forward the found information. The user displays it, and then the user needs to implement corresponding settings on the firewall according to their own needs to block impermissible user behavior. Through the firewall, the traffic of information data can also be effectively viewed, and the upload and download speed of data information can also be grasped, so that users can have good control and judgment on the use of the computer. The internal situation of the computer can also be controlled through this firewall. For viewing, it also has the function of starting and closing programs, and the log function inside the computer system is actually the firewall's summary and organization of the real-time security status and daily traffic status of the computer's internal system.
A firewall is an access control standard implemented during communication between two networks. It can prevent hackers in the network from accessing your network to the greatest extent. It refers to a combination of a series of components set between different networks (such as a trusted corporate intranet and an untrusted public network) or network security domains. It is the only entrance and exit for information between different networks or network security domains. It can control (allow, deny, monitor) the flow of information in and out of the network according to the enterprise's security policy, and it has strong anti-attack capabilities. It is the infrastructure that provides information security services and realizes network and information security. Logically, the firewall is a separator, a limiter, and an analyzer. It effectively monitors any activities between the intranet and the Internet and ensures the security of the internal network.
(Related recommendations: Server Security)
The above is the detailed content of What is the difference between a gatekeeper and a firewall?. For more information, please follow other related articles on the PHP Chinese website!