Explain Circuit-Level Gate Way Firewalls and Bastion Host?

It relays on two TCP connections, it imposes security by limiting which such connections are allowed.

  1. once created usually relays traffic without examining contents
  2. typically used when trust internal users by allowing general outbound connections
  3. SOCKS is commonly used

Untitled
Untitled

Bastion Host: It is treated as one of the highly secure host system

  1. runs circuit / application level gateways
  2. or provides externally accessible services
  3. potentially exposed to “hostile” elements
  4. hence is secured to withstand this
    • hardened O/S, essential services, extra auth
    • proxies small, secure, independent, non-privileged
  5. may support 2 or more net connections
  6. may be trusted to enforce policy of trusted separation between these net connections

Leave a Reply

Your email address will not be published. Required fields are marked *