|
Our managed
firewalls provide a low cost, secure method of protecting
and controlling access to your server that requires no management,
maintenance, or support.
THE SERVICE:
The firewall runs on independent hardware separate from customer
servers or network components. This is best practice that
provides a higher level of security. This service provides
custom filtering of traffic by port number. Customers specify
their own firewall settings and can change them at any time.
For example, the firewall will reject all traffic to your
server unless it is on a recognized port number, such as:
| HTTP: |
80 |
| HTTPS: |
443 |
| FTP: |
21 |
| Ping: |
7 |
| SSH: |
22 |
| Terminal
Services: |
3389 |
| Telnet: |
23 |
The ports to be filtered will be agreed
on with you when your server is set up. It is important that
you consider fully which ports are required, as blocking necessary
ports could interfere with software services that use unusual
port ranges. Customers do not have direct control of settings.
Our support team can make occasional changes to your configuration
should the need arise.
THE FIREWALL:
The firewall inspects network packet headers to manage traffic
between the Internet and internal networks, and servers. The
firewall examines individual packet headers to make sure that
they conform to the rules of the appropriate protocol (packet
filtering), and tracks the sequence of events during ongoing
connections to detect violations of normal processes (stateful
packet inspection).
The firewall utilizes application-level
proxies to scan the application-related content of communications
packets (payloads) to ensure conformance with rules specific
to web traffic, e-mail, DNS, and other broad application types.
|
