Demystifying Cluster-Based Fault-Tolerant Firewalls

Demystifying Cluster-Based Fault-Tolerant Firewalls

Firewalls are perimeter security solutions that are useful for addressing the unwanted traffic issue. However, designers must also appropriately address the network performance, availability, and complexity problems that firewalls introduce. The authors survey existing cluster-based fault-tolerant f...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet computing 2009-11, Vol.13 (6), p.31-38
Hauptverfasser: Neira Ayuso, P., Gasca, R.M., Lefevre, L.
Format: Artikel
Sprache:eng
Schlagworte:
Architecture
Availability
Clusters
Computer Science
Fault tolerance
Firewalls
Internet
Mathematical models
Networking and Internet Architecture
networks
Replication
Telecommunication traffic
Tradeoffs
unwanted traffic
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Firewalls are perimeter security solutions that are useful for addressing the unwanted traffic issue. However, designers must also appropriately address the network performance, availability, and complexity problems that firewalls introduce. The authors survey existing cluster-based fault-tolerant firewall architectures and discuss their trade-offs in these three areas. They present a preliminary evaluation of these architectures and discuss the need for state replication in stateful firewall clusters. They also discuss the difficulties of providing a simple, performance, and fault-tolerant cluster-based firewall solution.
ISSN:1089-7801
1941-0131
DOI:10.1109/MIC.2009.128