首页
外语
计算机
考研
公务员
职业资格
财经
工程
司法
医学
专升本
自考
实用职业技能
登录
外语
While hackers with motives make headlines, they represent less than 20% of all net- work security breaches. More common are inst
While hackers with motives make headlines, they represent less than 20% of all net- work security breaches. More common are inst
admin
2013-01-29
18
问题
While hackers with motives make headlines, they represent less than 20% of all net- work security breaches. More common are instances of authorized users accidentally winding up where they should not be and inadvertently deleting or changing data. However, the Internet introduces another concern: some Internet surfers are bound to go where they have no business and, in so doing, threaten to wipe out data to which they should not have access.
Before picking a firewall, companies need to adopt security policies. A security policy states who or what is allowed to connect to whom or what. You can group all users by department or classification. The better firewall products let you drag and drop groups in a graphical user interface (GUI) environment to define network security easily.
Two methods are most often used together to establish an Internet firewall. They are application and circuit gateways, as well as packet filtering. With application and circuit gateways, all packets are addressed to a user-level application on a gate-way that relays packets between two points. With most application gateways, additional packet-filter machines are required to control and screen traffic between the gateway and the networks. A typical configuration includes two routers. With a bastion host that serves as the application gateway sitting between them.
A drawback to application and circuit gateways is that they slow network performance. This is because each packet must be copied and processed at least twice by all the communication layers. Packet-filter gateways, which act as routers between two nets, are less secure than application gateways but more efficient. They are transparent to many protocols and applications, and they require no changes in client applications, no specific application management or installation, and no extra hardware.
Using a single, unified packet-filter engine, all net traffic is processed and then for- warded or blocked from a single point of control. However, most packet filters are state- less, understand only low-level protocols, and are difficult to configure and verity. In addition, they lack audit mechanisms. Some packet filters are implemented inside routers, limiting computing power and filtering capabilities. Others are implemented as s9ftware packages that filter the packets in application-layer processes, an inefficient approach that requires multiple data copies, expensive delays and context switches and delivers lower throughput.
So what’s a network administrator to do? Some vendors are developing firewalls that overcome many of these problems and combine the advantages of application gateways and packet filtering. These efficient, protocol-independent, secure firewall engines are capable of application-level security, user authentication, unified support, and handling of all protocols, auditing and altering. They are transparent to users and to system setup, and include a GUI for simple and flexible system management and configuration.
The most suitable title for this passage is ______.
选项
A、Hackers and Our Defense
B、Internet Surfers’ Guide
C、Firewall: A Measure of Network Security
D、Information Technology
答案
C
解析
通读文章可以发现,作者的重点集中在网络防火墙的建设方面。他介绍了几种模式,逐一分析了其优点和缺点,然后给用户提供了一些建议。除C项外,其他的选择项都过于宽泛,没有切中文章主旨。
转载请注明原文地址:https://kaotiyun.com/show/Y41O777K
0
考博英语
相关试题推荐
Unlikemostsports,whichevolvedovertimefromstreetgames,basketballwasdesignedbyonemantosuitaparticularpurpose.
ThementalhealthmovementintheUnitedStatesbeganwithaperiodofconsiderableenlightenment.DorotheaDixwasshockedtof
ThehistoryofAfrican—Americansduringthepast400yearsistraditionallynarrated【41】anongoingstraggleagainst【42】andindif
Throughmostcitytrafficisregulatedbyautomatictrafficlights,thecity’sresidentsarenotoriousforignoringthem.
Itusedtobesostraightforward.Ateamofresearchersworkingtogetherinthelaboratorywouldsubmittheresultsoftheirres
Itusedtobesostraightforward.Ateamofresearchersworkingtogetherinthelaboratorywouldsubmittheresultsoftheirres
Tounderstandhowastrologyworks,weshouldfirsttakeaquicklookatthesky.Althoughfilestarsareatenormousdistances,
In1784,fiveyearsbeforehebecamepresidentoftheUnitedStates,GeorgeWashington,52,wasnearlytoothless.Sohehireda
ThegravitationalpulloftheEarthandmoonisimportanttousasweattempttoconquermoreandmoreofouter-space.Here’swh
随机试题
下列文章中既是记人散文,又是文艺随笔的是()
A、 B、 C、 D、 D
关于吸入性肺脓肿的主要临床表现,下列哪项是不典型的
端粒酶可看作是一种
A.血行转移B.直接蔓延和种植C.直接蔓延和淋巴转移D.淋巴转移和蔓延E.血行转移和淋巴转移绒毛膜癌主要播散的方式
乙级设备监理单位可以监理()。
为防止游客单独外出时走失,导游应告知其记住()。
我国创办的第一个幼儿教育机构是()。
从哲学角度看,成语“守株待兔”中农夫的错误在于()。
Itseemsthatheisneverbotheredabout______(别人是如何看待他的行为的).
最新回复
(
0
)