NETWORK SECURITY TECHNOLOGY BASED ON FIREWALL AND INTRUSION DETECTION SYSTEM

Abstract

Author(s): Gursewak Singh, Bohar Singh

As rapid growth of internet, computer network and network devices are becoming more vulnerable to various types of attacks. Network security tools such as Firewall and Intrusion Detection System (IDS) are used for monitoring the network and protecting it from the intruder, but both of Firewall and IDS has its own merits and demerits. Firewall has shortages, such as it cannot keep away interior attacks, it cannot provide a consistent security strategy. Intrusion Detection System (IDS) also has many defects, such as low detection ability, lack of effective response mechanism, poor manageability, etc. If firewall and IDS are integrated, the integration of both can result in greater network security to network. IDS monitors the network, provides a real time detection of attacks from the interior and exterior, and automatically informs firewall and dynamically alters the rules of firewall once an attack is found; In this paper Firewall and IDS are discussed along with their types, functionality and limitations and then discuss the integration Firewall and IDS in network topology