MoinQ:

Contents

  1. Ingress_Filtering
    1. 2023
    2. Ingress filtering definition

Egress_Filtering

1. Ingress_Filtering

用語に混乱が見られる。

RFC/2827 BCP: 38 2000 年 (Kaminsky 攻撃の説明は 2008年)

2000年当時は Inbound Filteringは考慮されていなかった。-- ToshinoriMaeno 2023-11-25 11:47:58

1.1. 2023

https://www.techtarget.com/searchnetworking/definition/ingress-filtering

What is ingress filtering? 

Ingress filtering is a method used by enterprises and internet service providers 
to prevent suspicious traffic from entering a network. 

When configured on an edge device such as a router or firewall, 
ingress filtering examines all inbound packets and 
permits or denies entry to the network based on information in the packet header. 

It is a form of packet filtering.

https://en.wikipedia.org/wiki/Ingress_filtering

https://www.ncsc.gov.ie/emailsfrom/Resources/Ingress-Egress/

Ingress filtering (also inbound filtering) https://nordvpn.com/ja/cybersecurity/glossary/ingress-filtering/

1.2. Ingress filtering definition

Ingress filtering is a network security mechanism that protects a network by 
checking and controlling the incoming traffic. 

In computer networking, “ingress“ refers to the process of data entering a network or 
passing through a network boundary, for example, a router or firewall. 

It works like a security guard at the entrance of a building, 
allowing only authorized people to enter and keeping out anyone who shouldn’t be there.

Ingress filtering usually operates at the network layer (Layer 3) of the TCP/IP protocol stack, 
examining the headers of incoming IP packets. 
It involves comparing the source IP address of the packet against a set of predefined rules or access control lists.
If the source IP address is found to be invalid or not permitted based on the defined policies,
the packet is dropped or discarded.

The main purpose of ingress filtering is to stop harmful or unauthorized data from getting into a network. 
It helps protect against different types of attacks, like IP spoofing and distributed denial-of-service (DDoS) attacks, by filtering out packets with forged or illegitimate source IP addresses. 
By using ingress filtering, organizations can make their networks safer and more reliable.

See also: packet filtering, network layer

CategoryDns CategoryWatch CategoryTemplate

MoinQ: Ingress_Filtering (last edited 2024-06-20 09:31:18 by ToshinoriMaeno)