dynamic packet filter

For example, assume that you wish to configure your firewall so that all users in your company are allowed out to the Internet, but only replies to users' data requests are let back in. With a static packet filter, you would need to permanently allow in replies from all external addresses, assuming that users were free to visit any site on the Internet. This kind of filter would allow an attacker to sneak information past the filter by making the packet look like a reply (which can be done by indicating "reply" in the packet header).

By tracking and matching requests and replies, a dynamic packet filter can screen for replies that don't match a request. When a request is recorded, the dynamic packet filter opens up a small inbound hole so only the expected data reply is let back through. Once the reply is received, the hole is closed. This dramatically increases the security capabilities of the firewall.

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Ethical hacking and countermeasures: Network penetration testing intro Here enterprise security expert Michael Gregg explains network penetration testing, where the term "ethical hacking" came from, who to hire for a... Are you on a domain name system (DNS) blacklist database? Many domain name system (DNS) blacklist databases exist. If your mail server or IP address has been misused you may be on them. Our networking... Rogue access points: Preventing, detecting and handling best practices Rogue access points, wireless or otherwise, pose network security threats. Learn how to prevent, detect and eliminate unauthorized APs from finding...

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary anti-replay protocol  (SearchNetworking.com) HELLO packet  (SearchNetworking.com)