From the course: Protecting Your Network with Open Source Software
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Static packet filtering vs. stateful packet inspection
From the course: Protecting Your Network with Open Source Software
Static packet filtering vs. stateful packet inspection
- [Instructor] Another way to classify firewalls is by how they examine packets. There are generally two ways firewalls examine packets. One is static packet filtering, or SPF, which inspect packets one at a time. This approach doesn't use any memory. The second way is referred to as stateful packet inspection, or SPI, which inspects packets in relation to previous packets. This approach uses memory that remembers the details about each packet and because of the use of the memory, it has substantial advantages. What does a static packet filtering firewall examine? It looks at source IP, destination IP, source port number, and destination port number. What is then the advantage of stateful packet inspection over static packet filtering? The main advantage is since it has memory, it doesn't need to inspect all the details of packets every time it sees a packet. For example, let's say that an incoming or ingress packet is…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.