VPN-1/Firewall-1 NG differs from Packet filtering and Application Layer Gateways, because?
A.
VPN-1/Firewall-1 NG provides only minimal logging and altering mechanism.
B.
VPN-1/Firewal-1 NG uses Stateful inspection which allows packet to be examined at the top of
the layers of the OSI model.
C.
VPN-1/Firewall-1 NG has access to a limited part of the packet header only.
D.
VPN-1/Firewall-1NG requires a connection from a client to a firewall and firewall to a server.
E.
VPN-1/Firewall-1 NG has access to packets passing through key locations in a network.
Explanation:
this is the main difference between the listed firewall technologies, the statefull inspection,
because with it, we can see the packet before it goes to the Layer 3 of the OSI model (Network
Layer = O.S TCP/IP Protocol Stack), this technology has the most access to the TCP/IP packet
including the top layers.
Incorrect Answers:
A: This is configurable and is not a difference between the listed firewall technologies.
C: VPN1/Firewall 1 has full access to the packet headers.
D: This is not a difference.
E: All firewall technologies has access to the network, you define what are your key locations
inside it, then, you put the firewall to make that “key locations” pass the traffic through it.