7. Circuit-level gateway

What circuit-level gateways (TCP) have in common with application-level gateways is that they require two connections to be established: one between the client and the gateway, and another between the gateway and the server. The similarities end there, as circuit-level gateways filter at the transport layer and, unlike application-level gateways, can benefit any TCP/IP service.

The filtering performed by circuit-level gateways covers the same fields as packet filters, but control is more flexible in that the relay gateway can momentarily block traffic and thus perform additional processing. Here are the different filtering rules that can be implemented:

authorize a connection on a port for a fixed maximum duration ;
allow reuse of the same port only after a certain period of time;...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed? Log in!

Ongoing reading
Circuit-level gateway

Previous
page Application-level gateway (proxy and reverse-proxy)

Stateful and deep packet inspection (SPI and DPI)

Article included in this offer

"Security of information systems"

( 86 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details

Bibliography

(1) - ANSSI - Recommandations pour la définition d'une politique de filtrage réseau d'un pare-feu. - mars 2013 https://www.ssi.gouv.fr/uploads/IMG/pdf/NP_Politique_pare_feu_NoteTech.pdf

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed? Log in!