dynamic packet filter

For example, assume that you wish to configure your firewall so that all users in your company are allowed out to the Internet, but only replies to users' data requests are let back in. With a static packet filter, you would need to permanently allow in replies from all external addresses, assuming that users were free to visit any site on the Internet. This kind of filter would allow an attacker to sneak information past the filter by making the packet look like a reply (which can be done by indicating "reply" in the packet header).

By tracking and matching requests and replies, a dynamic packet filter can screen for replies that don't match a request. When a request is recorded, the dynamic packet filter opens up a small inbound hole so only the expected data reply is let back through. Once the reply is received, the hole is closed. This dramatically increases the security capabilities of the firewall.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT SIEM platform secures university's open network With security information and event management platform QRadar, Wayne State University has secured its open network without locking down its systems. Shifting defenses and dynamic perimeters challenge network security Network security faces challenges from de-perimeterization and other IT trends. Securing the new network architecture In modern networks, security is less about locking down a perimeter and more about controlling access and behavior and ensuring data safety in a...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary anti-replay protocol  (SearchNetworking.com) HELLO packet  (SearchNetworking.com)