Site home page Get alerts when Linktionary is updated Book updates and addendums Get info about the Encyclopedia of Networking and Telecommunicatons, 3rd edition (2001) Download the electronic version of the Encyclopedia of Networking, 2nd edition (1996). It's free! Contribute to this site Electronic licensing info
|
Filtering Related Entries Web Links New/Updated Information Note: Many topics at this site are reduced versions of the text in "The Encyclopedia of Networking and Telecommunications." Search results will not be as extensive as a search of the book's CD-ROM. In the context of networks, filtering is a firewall-like process performed by screening routers. Most routers today have filtering functions. These routers evaluate information in a packet, such as the source and/or destination address, or application type (based on port number). The basic filtering rule is "all that is not expressly permitted is denied." In other words, drop all packets except those that have been previously specified as being acceptable. Routers look inside packets and evaluate any of the following:
One reason for blocking IP addresses is to prevent spoofing attacks. A spoofed packet originates from an unknown/unauthorized source and contains a fake source address. The fake address makes the packet appear to be from a system on your own internal network or a trusted system. A screening router will drop such packets. How does it know a packet is spoofed? Simple: if the packet arrives on the external port with an internal source address, it is fake. See "Firewall" for more information about filtering and advanced network security techniques. Copyright (c) 2001 Tom Sheldon and Big Sur Multimedia. |