By Topic

A protocol and simulation for distributed communicating firewalls

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$33 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)

The concept of distributing firewalls into the Internet was previously presented for the purpose of pushing LAN attacks away from a single firewall (R.N. Smith and S. Bhattacharya, 1997; 1999). The paper presents a protocol for firewalls to communicate information to enable distributed firewalls to isolate LAN attacks. Currently firewalls are used to protect a single LAN or extranet of collaborating units. However, each firewall in these configurations are individually managed. Our approach is to place firewalls out into the Internet that will cooperate and push the attack to a firewall that is nearer to the source of the attack. These distributed firewalls can be considered as gateway firewalls. We present a protocol of command and information packets used to take the offensive in the Internet war against hackers and crackers. The communicating firewalls would be placed in routers or switches acting as gateways throughout the Internet. The proposed protocol can be encapsulated as a security agent into any one of the popular router protocols (e.g., BGP and PNNI). We have currently chosen to place our protocol over BGP-4. In order to evaluate our new protocol, we have developed a distributed network protocol simulator which we also describe

Published in:

Computer Software and Applications Conference, 1999. COMPSAC '99. Proceedings. The Twenty-Third Annual International

Date of Conference: