Skip to content

Instantly share code, notes, and snippets.

@ZacFran

ZacFran/Network_filtering.md

Created July 19, 2023 13:22
Show Gist options
  • Save ZacFran/7f89330bc407b065e21b4fcc8e0517e7 to your computer and use it in GitHub Desktop.
Save ZacFran/7f89330bc407b065e21b4fcc8e0517e7 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
Network_filtering.md

Notes

  • Blocking types of data within a network

Block-lists

  • White-list
    explicitly specify the "good" traffic
    Blocks the rest
  • Black-lists
    Explicity specify the "bad" traffic
    Rest allowed

Intrusion Systems

  • Intrusion Detection System
    A system that moitors traffic and alerts
  • Intrusion Prevention System
    activly denies network traffic
    Device Placement

Firewall Methods

  • Stateless filtering
    filter traffic based on layer 3 and 4 headers
  • Stateful filtering tracks the flags of a TCP packet to allow connections leaving the network but block incoming traffic

Linux Host firewall

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment