英语翻译a firewall is a deivce that filters all traffic between a protected or "inside" network and a less trustworthy or "outside" network.Usually a firewall runs on a dedicated device;because it is a single point through which traffic is channe
来源:学生作业帮助网 编辑:六六作业网 时间:2024/12/26 12:20:29
英语翻译a firewall is a deivce that filters all traffic between a protected or "inside" network and a less trustworthy or "outside" network.Usually a firewall runs on a dedicated device;because it is a single point through which traffic is channe
英语翻译
a firewall is a deivce that filters all traffic between a protected or "inside" network and a less trustworthy or "outside" network.Usually a firewall runs on a dedicated device;because it is a single point through which traffic is channeled,performance is improtant,which means nonfirewall functions should not be done on the same machine.Because a firewall is executable code,an attacker could compromise that code and execute from the firewall's device .Thus,the fewer pieces of code on the device,the fewer tools the attacker would have by compromising the firewall.Firewall code usually runs on a proprietary or carefully minimized operating system.The purpose of a firewall is to keep "bad" things outside a protected environment.To accomplish that,firewalls implement a security policy that is specifically designed to address what bad things might happen.For example,the policy might be to prevent any access from outside(while still allowing traffic to pass from the inside to the outside).Alternatively,the policy might permit accesses only from certain places,from certain users,or for certain activities.Part of the challenge of protecting a network with a firewall is detemining which security policy meets the needs of the installation.
英语翻译a firewall is a deivce that filters all traffic between a protected or "inside" network and a less trustworthy or "outside" network.Usually a firewall runs on a dedicated device;because it is a single point through which traffic is channe
防火墙是一种装置,它对受保护的、“内部”网,及不值得信任的、“外部”网之间的所有通信量进行过滤.一般情况下,防火墙在专用设备上运行,因为它是疏导流量的一个接点,故性能很重要,这意味着防火墙的功能不可能在一台机器上实现.由于防火墙是可执行代码,攻击者可能会篡改该代码,并让防火墙所在设备执行.因此,代码越少,攻击者拥有影响防火墙的工具就越少.防火墙源代码通常运行在专有的或最小化的操作系统上.防火墙的功能是确保将“不好”的东西隔绝在受保护的运行环境之外.为了实现这个目标,防火墙执行针对可能发生的不好情况的安全策略.例如,该策略可能阻止任何来自外部的访问(但仍允许流量从内部通往外部).或者该策略可能只允许来自特定地方,特定用户的访问,及对某些特定活动的通信.用防火墙保护网络通信的挑战是决定用哪一种安全策略可以满足安装需要.
觉得可以请采纳
防火墙是一个deivce过滤所有交通之间的一种保护或“内部”网络和一个不太值得信任或“外部”网络。通常一个防火墙运行在一个专用的设备,因为它是一个单点通过交通是通灵,性能是重要的,这意味着nonfirewall功能不应该做在同一台机器上。因为一个防火墙是可执行代码,攻击者可以妥协,代码和执行从防火墙的装置。因此,更少的代码片断在设备上,更少的工具攻击者会通过妥协的防火墙。防火墙代码通常运行在一个专...
全部展开
防火墙是一个deivce过滤所有交通之间的一种保护或“内部”网络和一个不太值得信任或“外部”网络。通常一个防火墙运行在一个专用的设备,因为它是一个单点通过交通是通灵,性能是重要的,这意味着nonfirewall功能不应该做在同一台机器上。因为一个防火墙是可执行代码,攻击者可以妥协,代码和执行从防火墙的装置。因此,更少的代码片断在设备上,更少的工具攻击者会通过妥协的防火墙。防火墙代码通常运行在一个专有或最小化操作系统。防火墙的目的是保持“坏”一个受保护的环境以外的东西。完成,防火墙实现一个安全策略,是专门设计用于地址有什么不好的事情可能会发生。例如,政策可能会阻止任何从外部访问(同时仍然允许流量通过从里向外的)。另外,这项政策可能允许访问仅从某些地方,从特定的用户,或者对某些活动。部分挑战保护网络的防火墙是detemining哪些安全政策符合需要的安装。
收起