Passive Traffic Inspection for Automated Firewall Rule Set Generation

Pranschke, Georg-Christian; Irwin, Barry V W; Barnett, Richard J

Title: Passive Traffic Inspection for Automated Firewall Rule Set Generation
Creator: Pranschke, Georg-Christian
Creator: Irwin, Barry V W
Creator: Barnett, Richard J
Date Issued: 2009
Date: 2009
Type: text
Type: article
Identifier: http://hdl.handle.net/10962/428114
Identifier: vital:72487
Identifier: https://d1wqtxts1xzle7.cloudfront.net/49200001/Automated_Firewall_Rule_Set_Generation_T20160928-12076-1n830lx-libre.pdf?1475130103=andresponse-content-disposi-tion=inline%3B+filename%3DAutomated_Firewall_Rule_Set_Generation_T.pdfandExpires=1714733377andSignature=Q0miMvZNpP7c60n42m54TvFG4hIdujVJBilbpvDKquBk54RPwU22pH6-40mpmOxIFBllKUmOgZfS9SwzuiANn-AZ2bhAELyZmf2bJ5MgceaYH5wnPjX9VzP04C2BACzhO5YutUfwkysburUx-zNdiemSofx2p1DwOszXaJNauYdP8RcHQmFl8aOnkoc3kmU02eKz8WiQISntJtu5Gpo8txP-Z6f1BEzvlVGd432tndhRwpsEVWGW43~oXsdaWQu72S8pTakgKPREqaD7CUHKMXiiUBfuiSj1nFo2n4xZQlFHqbMT7TAYzBPM0GObe~kBe5s2nY6dnOMUKUsSaeTUtqA__andKey-Pair-Id=APKAJLOHF5GGSLRBV4ZA
Description: The introduction of network filters and chokes such as firewalls in exist-ing operational network is often problematic, due to considerations that need to be made to minimise the interruption of existent legitimate traf-fic. This often necessitates the time consuming manual analysis of net-work traffic over a period of time in order to generate and vet the rule bases to minimise disruption of legitimate flows. To improve upon this, a system facilitating network traffic analysis and firewall rule set genera-tion is proposed. The system shall be capable to deal with the ever in-creasing traffic volumes and help to provide and maintain high uptimes. A high level overview of the design of the components is presented. Additions to the system are scoring metrics which may assist the admin-istrator to optimise the rule sets for the most efficient matching of flows, based on traffic volume, frequency or packet count. A third party pack-age-Firewall Builder-is used to target the resultant rule sets to a number of different firewall and network Filtering platforms.
Format: 2 pages
Format: pdf
Language: English
Relation: Proceedings of Southern African Telecommunication Networks and Applications Conference (SATNAC)
Relation: Pranschke, G.C., Irwin, B. and Barnett, R.J., 2009. Passive Traffic Inspection for Automated Firewall Rule Set Generation. Southern Africa Telecommunication Networks and Applications Conference (SATNAC)
Relation: Proceedings of Southern African Telecommunication Networks and Applications Conference (SATNAC) volume 2009 number 1 1 2 2009 Conference
Rights: Publisher
Rights: Use of this resource is governed by the terms and conditions of the Southern Africa Telecommunication Networks and Applications Conference (SA TNAC) Statement (https://www.satnac.org.za/)

Hits: 50
Visitors: 55
Downloads: 6

Collections

Irwin, Barry V W (Prof)

RU Department of Computer Science

SDG 09. Industry, Innovation and Infrastructure

		Thumbnail	File	Description	Size	Format
View Details Download			SOURCE1	Passive Traffic Inspection for Automated Firewall Rule Set Generation.pdf	50 KB	Adobe Acrobat PDF	View Details Download