Explanation & Hint:
- Packet filter firewall: This device filters traffic based on defined rules such as IP addresses, ports, or protocols but does not maintain any state information about connections. It would match the description “filters traffic based on defined rules as well as connection context,” although the latter part of the description might more accurately describe a stateful firewall.
- IPS (Intrusion Prevention System): This device actively monitors network traffic to identify and respond to suspicious activity by using signatures to detect patterns. Therefore, it matches the description “uses signatures to detect patterns in network traffic.”
- Application gateway (also known as a proxy firewall or application-level gateway): This operates at the higher layers of the OSI model to filter traffic based on the payload of packets, which can include specific content, applications, or services. Hence, it matches “enforces an access control policy based on packet content.”
- Stateful firewall: This device keeps track of the state of active connections and makes decisions based on the context of the traffic (such as the state of the connection) as well as the defined rules. It corresponds to the description “filters traffic based on defined rules as well as connection context.”
- There is a description “filters traffic on Layer 7 information” which typically would match an application layer firewall or a web application firewall, which inspects traffic at the highest level in the OSI model, focusing on the actual content of the messages.
|
