Router-Based Firewalls
Previous sections considered firewalls implemented on general-purpose Solaris systems. This section briefly discusses router-based firewalls, as well as their pros and cons. Advanced routers, such as those running Cisco Internetwork Operating System (IOS), implement both stateless and stateful packet filtering on specialized hardware.There are many advantages to running firewalls on routers:
Hosts are not overloaded with network-level operations (permitting or denying packets, logging, packet accounting, and so on).
Routers’ specialized hardware is better suited for high-speed packet processing.
General network-level security may be handled by a different team of network administrators, permitting system administrators to ...
Get Solaris 8 Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
