Dual-homed
Encyclopedia
In firewall
technology, dual-homed is one of the firewall architectures for implementing preventive security. It provides the first-line defense and protection technology for keeping untrusted bodies from compromising information security by violating trusted network space.
A dual-homed host (or dual-homed gateway) is a system fitted with two network interfaces
(NICs) that sits between an untrusted network (like the internet
) and trusted network (such as a corporate network) to provide secure access. Dual-homed is a general term for proxies
, gateways
, firewalls, or any server that provides secured applications or services directly to an untrusted network.
Dual-homed hosts can be seen as a special case of bastion host
s and multi-homed hosts. They fall into the category of application-based firewalls.
Other firewall architectures include the network-layer firewall types screening router
, screened-host , and screened-subnet
.
Firewall (computing)
A firewall is a device or set of devices designed to permit or deny network transmissions based upon a set of rules and is frequently used to protect networks from unauthorized access while permitting legitimate communications to pass....
technology, dual-homed is one of the firewall architectures for implementing preventive security. It provides the first-line defense and protection technology for keeping untrusted bodies from compromising information security by violating trusted network space.
A dual-homed host (or dual-homed gateway) is a system fitted with two network interfaces
Network card
A network interface controller is a computer hardware component that connects a computer to a computer network....
(NICs) that sits between an untrusted network (like the internet
Internet
The Internet is a global system of interconnected computer networks that use the standard Internet protocol suite to serve billions of users worldwide...
) and trusted network (such as a corporate network) to provide secure access. Dual-homed is a general term for proxies
Proxy server
In computer networks, a proxy server is a server that acts as an intermediary for requests from clients seeking resources from other servers. A client connects to the proxy server, requesting some service, such as a file, connection, web page, or other resource available from a different server...
, gateways
Gateway (telecommunications)
In telecommunications, the term gateway has the following meaning:*In a communications network, a network node equipped for interfacing with another network that uses different protocols....
, firewalls, or any server that provides secured applications or services directly to an untrusted network.
Dual-homed hosts can be seen as a special case of bastion host
Bastion host
A bastion host is a special purpose computer on a network specifically designed and configured to withstand attacks. The computer generally hosts a single application, for example a proxy server, and all other services are removed or limited to reduce the threat to the computer...
s and multi-homed hosts. They fall into the category of application-based firewalls.
Other firewall architectures include the network-layer firewall types screening router
Screening router
A screening router performs packet-filtering and is used as a firewall. In some cases a screening router may be used as perimeter protection for the internal network or as the entire firewall solution.-See also:*Access Control List*DMZ...
, screened-host , and screened-subnet
Screened-subnet firewall
In network security, a screened subnet firewall is a variation of the dual-homed gateway and screened host firewall. It can be used to separate components of the firewall onto separate systems, thereby achieving greater throughput and flexibility, although at some cost to simplicity...
.
External links
- http://www.invir.com/int-sec-firearc.html Comparison of different types of firewall with D.-H..