Point to remember for CISA Exam Firewall Implementation
(1)For CISA Exam, we need to remember three types of firewall implementation structure as follow:
(i)Dual-Homed Firewall
Characteristics:
(i)One Packet Filtering Router
(ii)One bastion host with two NIC (Network Interface Card).
(ii)Screened Host Firewall
Characteristics:
(i)One Packet Filtering Router
(ii)One Bastion Host
(iii)Screened subnet Firewall (Demilitarized Zone)
Characteristics:
(i)Two Packet Filtering Router
(ii)One Bastion Host
(2)Out of all types of firewall implementation structures, Screened Subnet Firewall (DMZ) provides greatest security environment (as it implements 2 packet filtering router and 1 bastion host).