- 82 views
- 57 downloads
RuleAnalyzer
-
- Author(s) / Creator(s)
-
Firewalls and IDS (Intrusion Detection Systems) use packet classification for filtering incoming and outgoing packets. Traffic isolation through packet classification is important for devices like routers and firewalls that provide services like admission control, per-flow queuing and quality of service. These devices use a combination of algorithms and rules to classify packets and take appropriate action(s) which are defined based on access control lists. Most devices work well with smaller access control lists and lower data rates, but with most organizations demanding remote services and performance, this leads to complex networks with huge access lists and higher bandwidth. At the time of writing this report devices are able to push data rates of 10 Gig/sec. Higher data rates combined with large access control lists shrink the time devices have to inspect packets, hence leading to the problem of unclassified packets either being denied access or permit to enter organizational networks. Either case is not desirable as first leads to performance degradation and later leaves internal networks vulnerable to potential attacks. (As cited in abstract.)
-
- Date created
- 2008-03-19
-
- Subjects / Keywords
-
- Type of Item
- Report