Today we will look at running an Application Firewall (AppFW) on the SRX.
This is different to the normal firewalling in that we are not filtering based on TCP/UDP ports but instead filtering on application signatures that can detect applications whether or not they are not running on the standard ports expected.Further even when we are running on the standard ports, through the signatures we can detect and block access to specific services without you having to worry about blocking all access to a certain IP on a certain port. Eg. We could block access to Facebook Farmville without having to know the either the IP of Facebook or having to block all of Facebook. I will try and show some examples of this functionality.
Showing posts with label AppFW. Show all posts
Showing posts with label AppFW. Show all posts
Subscribe to:
Posts (Atom)