UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
BAIT1103 Tutorial 8
1. BAIT1103 INTERNET SECURITY
Tutorial 8
1. List three design goals for a firewall.
2. List four techniques used by firewalls to control access and enforce a
security policy.
3. What is the difference between a packet-filtering firewall and a stateful
inspection firewall?
4. What is an application-level gateway and circuit-level gateway? Which
one do you think is better?
5. What is bastion host? List three characteristics of bastion host.
6. Examine the following criteria and complete the packet-filtering ruleset
table.
Rule A: Allow any outbound HTTP packet from internal source.
Rule B: Allow any inbound SMTP packet from external source.
Rule C: Allow any outbound HTTPS packet from internal source.
Rule D: Deny any outbound POP3 packet from internal source.
Rule E: Explicit deny any packet from internal or external source.
Rule Direction Source
Address
Destination
Address
Protocol Destination
Port
Action
A
B
C
D
E
2. BAIT1103 INTERNET SECURITY
Past Year Questions:
1. What are the THREE (3) general limitations that are faced in a firewall?
2. Figure 4 shows one of the firewall types.
i. Identify and briefly describe what type of firewall is shown in Fig 4.
ii. Give (2) advantages and (1) disadvantage for this type of firewall.