Home > Ask the Security Experts > Questions & Answers > The risks of deploying distributed firewalls
Ask The Security Expert: Questions & Answers
EMAIL THIS

The risks of deploying distributed firewalls

Stephen Mencik EXPERT RESPONSE FROM: Stephen Mencik

Pose a Question
Other Security Categories
Meet all Security Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 06 June 2001
Could you please advise me on the risks involved in deploying distributed firewalls?

>
A traditional firewall is used to separate an internal network from the Internet. This provides some level of protection against attacks that come from external sources, but does nothing to prevent insider attacks.

Distributed firewalls are typically software products that reside on each individual computer on the network, so that protection is provided against attacks coming from anywhere.

If one is going to use distributed firewalls (and they're not a bad idea), don't give up your traditional firewall. The sooner an attack can be stopped, the better off you are. Your traditional firewall can hide the details of your internal network and prevent your internal machines from even being attacked by external sources.

The biggest problems with the distributed firewalls are the following:
[1] Consistent application of firewall rules.
[2] Interference with standard applications.
[3] Users blaming problems on on the firewall software.

It is very possible that the firewall software will cause problems with standard applications. Your users will not be at all happy with that. Even if the firewall software does not cause problems, it will be blamed for problems that do occur, and the security support staff will have additional help-desk work. Keeping every machine up to date with the latest firewall rules will be a logistical nightmare. However, some products are coming out with centralized management tools to help with those problems.

So, the short answer to your question, is that the security risks of using distributed firewalls are minimal, as long as you also keep your traditional firewall. If you give up the traditional firewall, you are exposing each of your networked computers to individual attack, instead of hiding them behind the firewall. That is a risk that I would not recommend.

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Find Security Solutions for Your Business
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts