Professional Documents
Culture Documents
Outline
What is a Port?
What is a firewall?
Who needs a firewall?
What are the OSI and TCP/IP
Network models?
What different types of firewalls are
there?
What are pros and cons of a firewall?
What is iptables?
What is a Port
When referring to a computer or device, a hardware
port resembles a plug-in or connection commonly
found on the back of a computer. Hardware ports
allow computers to have access to external
devices such as computer printers. Below is a
short listing of the different types of computer
ports you may find on a computer.
Old Keyboard Port)
Firewire port
LPT Port (Printer Port)
PS/2 Port (Keyboard Port / Mouse Port)
Serial Port
USB Port
What is a Port
When referring to a network or to the Internet, a software
port is a location where information is sent through. A
commonly used and accessed port is port 80, which
is the http port. A listing of commonly known and
used ports can also be found on the below listing.
Users running Microsoft Windows can utilize the
netstat command to view currently active connections
that include ports currently being used.
Users who wish to block ports on their computer or
network can use a software or hardware firewall. If
you are unable to get access to a particular port it's
likely that a firewall is already present on the Network
or other network settings set by the administrators
have been setup.
What is a Port
Port
Protocol
0
1
Description
Reserved
TCP
Remote Job
Entry
TCP, UDP
ECHO
TCP, UDP
Discard
13
TCP, UDP
Daytime - RFC
867
17
TCP, UDP
What is a Port
The port numbers are divided into three ranges: the Well Known
Ports, the Registered Ports, and the Dynamic and/or Private Ports.
The Dynamic and/or Private Ports are those from 49152 through
65535.
What is a Port
The Well Known Ports are assigned by the IANA and on most systems can
only be used by system (or root) processes or by programs executed by
p
r
i
v
i
l
e
g
e
d
u
s
e
r
s
.
Ports are used in the TCP [RFC793] to name the ends of logical
connections which carry long term conversations. For the purpose of
providing services to unknown callers, a service contact port is defined. This
list specifies the port used by the server process as its contact port. The
contact port is sometimes called the "well-known port".
To the extent possible, these same port assignments are used with the UDP
[RFC768]. The range for assigned ports managed by the IANA is 0-1023.
Port Assignments
Keyword
Decimal
Description
ftp-data
20/tcp
File Transfer
[Default]
26/tcp
Unassigned
smtp
25/udp
Simple Mail
Transfer
References
What is a firewall?
Protects networked computers from
intentional hostile intrusion.
Junction point between two networks. A
private and a public network.
Earliest were simple routers.
The term come from the concept of firewalls
and firedoors in buildings. They limit damage
that could spread from one subnet to
another.
Hardware Firewall
Software Firewall
A Firewall
Can filter traffic based on their source
and destination addresses, port
numbers, protocol used, and packet
state.
Cannot prevent individual users with
modems from dialing in and out of the
network.
Cannot protect against social
engineering and dumpster diving.
Types of Firewalls
Packet Filter
Circuit Level Gateways
Application Level Gateways
Stateful Multilayer Inspection
Other Considerations
Dial-in/out
Buy a solution
Build a solution
Linux -- IPTables