What works on the application level? PIX and FW-1 work on the network layer (unless
you use inspection under FW-1, which theoretically puts it at the application
layer). I do not know what layer Gauntlet runs at. Under PIX and FW-1, though, if
you allow HTTP traffic through, traffic hitting port 80 passes, regardless of
whether it is properly formatted HTTP traffic. This is not the way an ALG works.
To do full content-based inspection, you are going to have to look into proxy
server-type applications, ie. Netscape (now iPlanet) Proxy Server. These will
actually intercept a packet, look at it, and send it on if it is properly formatted.
There are probably firewalls that have good ALG's built-in, but I am not familiar
with them. I know FW-1 requires extensive extra work to set this up. It is not
"out-of-the-box".
-Ryan
Amit Kaushal wrote:
> It works on application level. Things are treated as objects. You have
> maximum control that way.
>
> ______________________________ Reply Separator _________________________________
> Subject: Which layer these thing work?
> Author: [EMAIL PROTECTED] at Internet-USA
> Date: 6/22/2000 1:17 AM
>
> Hi,
>
> I'm in process to select a firewall for my network. I
> want to know on which layer they (check point fw1/
> PIX, etc..) works.
> I want to do content checking not only hader base
> checking.
> I want full control on packets coming and going from
> my network.
>
> TIA
>
> Gm
>
> __________________________________________________
> Do You Yahoo!?
> Send instant messages with Yahoo! Messenger.
> http://im.yahoo.com/
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
