Skip to main content

WEB APPLICATION FIREWALL AND NETWORK FIREWALL EXPLAINED

Image
By

WHAT IS A FIREWALL?

A firewall is a network security tool that keeps track of and filters incoming and outgoing network traffic by previously specified security policies for an organization.

A Real-World Example is Windows defender.

USE OF FIREWALL

Any security design must have a firewall because it gives your network security device control over host-level defenses, eliminating the need for guesswork. Firewalls focus on blocking malware and application layer attacks.

LAYERS OF FIREWALL

We'll discuss the Firewall layers starting with the application layer that directly benefits the end user and working our way down to the physical layer.

7. APPLICATION LAYER

Human-Computer Interaction Layer, where applications can access network services.

6. PRESENTATION LAYER

Ensures that the data is in a usable format and data encryption occurs here.

5. SESSION LAYER

Maintains connections and is responsible for controlling ports and sessions.

4. TRANSPORT LAYER

Transmits Data using transmission protocols Incl. Transmission Control Protocol (TCP) AND User Datagram Protocol (UDP).

3. NETWORK LAYER

Decides which physical path the data will take place in.

2. DATA LINK LAYER

Defines the format of data on the network.

1. PHYSICAL LAYER

Transmits raw bit stream over the physical medium.

 

Web Application Firewall (WAF)

 

Web Application Firewall targets HTTP (Hypertext Transfer Protocol) traffic to secure web applications. A typical firewall separates traffic from the inside and outside of the network. This differs from a standard firewall.

A WAF monitors all HTTP communication in the space between public users and web applications. It finds and prevents harmful requests before it reaches users or online apps. Therefore, WAF protects business-critical web servers and applications from application-layer cyberattacks and zero-day threats. As businesses expand into new digital projects, this becomes more crucial since it can expose new web apps and application programming interfaces (APIs) to threats.

Application-specific traffic is targeted by WAF. It safeguards apps and (HTTP and HTTPS) traffic in network areas that are accessible over the internet. Distributed denial-of-service (DDoS) and SQL injection assaults are protected against thanks to this, which safeguards businesses.

  • Direct denial-of-service: An attempt to disrupt a network, service, or server by overwhelming it with a flood of internet traffic. It aims to exhaust its target's resources and can be difficult to defend as the traffic is not always malicious.
  • SQL injection: A type of injection attack that enables hackers to execute malicious SQL statements, which control the database server behind a web application. This enables attackers to bypass webpage authentication and authorization and retrieve the content of the SQL database, then add, modify, and delete its records. 


Network Firewall




A Network firewall safeguards a secured local area network against unauthorized entry to reduce the possibility of attacks. Its main purpose is to control communication between two zones by dividing them into safe and less secure areas. Without it, every computer that has a public Internet Protocol (IP) address is reachable from outside the network and might potentially be attacked.

Standard network firewalls reduce or stop illegal access to private networks. Any additional attempts to get access are prohibited by firewall regulations that specify the traffic that may enter the network. Unauthorized users and attacks from people or devices in less secure zones are two examples of network traffic this help to stop.

There are several types of attacks:

  • Unauthorized access: Attackers accessing a network without permission. This is commonly achieved through credential theft and compromised accounts as a result of people using weak passwords, social engineering, and insider threats.
  • Man-in-the-middle (MITM) attacks: Attackers intercept traffic either between the network and external sites or within the network itself. This is often a result of insecure communication protocols enabling attackers to steal data in transmission, then obtain user credentials and hijack user accounts. 
Reference: https://www.fortinet.com/resources/cyberglossary/waf-vs-firewall

Hope you all got an idea of the ancient firewall system… Keep exploring!


Labels:

Comments

Post a Comment

Popular posts from this blog

Getting started with WSL

By Anonymous
I recently started learning Linux operating system. I have a windows machine. I searched for what are the possible ways available to work with Linux. I ended up with more ways to install Linux and work with it. WSL is one of the simplest ways to get started with Linux on windows. So, I'll be sharing my learnings about WSL. It's obvious that to learn Linux one should have a Linux-based machine to work with and execute commands. There are four possible ways to get started with Linux. Possible ways to work with Linux Building a Linux-based computer which is quite expensive. I myself don't prefer to build a machine when I am a Student. Installing and using Linux in dual boot mode with your existing Windows using a virtual box. This is one of my preferred ways but it consumes more storage. So, this too fails. And the next way is to create instances in cloud platforms like AWS, GCP, and Azure and using remotely. Also, there is no cost associated with it. Because major cloud platf...
Post a Comment
Read more

Elasticsearch- II

By
 ELASTICSEARCH                                          In this blog we are going to learn how to use elasticsearch and kibana using python. Before getting into this, make sure that you have elasticsearch and kibana installed. To know the detailed procedure about the installation of elasticsearch and kibana, click the link below to learn the installation process from scratch. https://crescenttechnocratsclub.blogspot.com/2022/09/blog-post.html For python, let’s use VS Code . Visual Studio (VS) Code is a streamlined code editor with support for development operations like debugging, task running, and version control. Python IDLE is also fine to use but we will work with vs code in this blog. Install VS code using the following link : https://code.visualstudio.com/download Click op...
Post a Comment
Read more

Why you need Linux Right Now!

By
  Introduction Linux is an open-source operating system created in 1991 by Linus Torvalds. It's an alternative to the more popular Windows and Mac operating systems, and it comes with a wide range of features that make it a great choice for everyone, from beginners to seasoned professionals. In this blog, we'll discuss what Linux is, what it can offer you, and why you should start using it today. What Is Linux? Linux is used today by millions of people worldwide, including large corporations, small businesses, government organizations, and individuals. There are many reasons why you should use Linux. Here are a few: Linux is stable and secure. It is less likely to crash or become infected with a virus than Windows. Linux is customizable. You can change the look and feel of Linux to suit your needs, and you can add or remove software to create the perfect operating system for you. Linux is free. There are no licensing fees required to use Linux, and there are many free applicati...
Post a Comment
Read more