Professional Documents
Culture Documents
BY:
R. SRINIVASULU (07N21A0446)
CH. SHIVA RAM (07N21A0442)
K. MALLIKARJUNA (07N21A0422)
V. SUMAN KUMAR REDDY (07N21A0448)
AIM OF THE PRESENTATION
Introduction and aim of the project.
What is a firewall?
What are netfilters?
Why Linux?
Arm9 features.
Project overview.
Advantages and applications.
Future scope.
AIM OF THE PROJECT:
Network Security is a huge concern for enterprise networks.
Firewall is a machine which sits between public and private
networks and block traffic based on configurable rules.
Linux kernel provides a mechanism to implement our own
firewall using NETFILTERS.
So using this feasibility of Linux we create our own firewall and
make it to block packets belonging to different protocols
according to our commands.
BLOCK DIAGRAM OF PROJECT
INTERNET
(LAN/WAN/
MAN) FIREWALL IN ARM 9
LINUX ON
KERNEL S3C2440
EMBEDDED
BOARDS
ESSENTIALS OF THE PROJECT
Harvard architecture
156 MIPS
Automotives
Embedded
WHY LINUX???
Linux is freely distributable open source operating system.
It is Portable.
MAN
WAN
o There are many protocols on which network operate few are TCP/IP, ICMP, HTTP etc.
o On internet, the network breaks a message into parts of a certain size in bytes. These are
called packets.
o These packets consist of Sender’s IP address and Destination’s IP address.
o All these packets travel through routers, switches, bridges, gateways which operate at
respective layers.
NEED FOR SECURITY
When a device is connected to a network and begins communicating with it, it is taking a
risk.
Network security is generally taken as providing protection at the boundaries of an
organization by keeping out intruders.
Information Security focuses on protecting sensitive data from malware attacks using Data
Loss Prevention(DLP) techniques.
Firewalls are used to provide the security to a system.
A firewall is a part of a computer system(OS) or network that is designed to block
unauthorized access while permitting authorized communications.
A firewall’s basic task is to regulate some of the flow of traffic between computer networks
of different trust levels.
WHAT IS PACKET FILTERING??
Packet filters act by inspecting the “packets” which represent the basic unit of data transfer
between computers on the internet.
If a packet matches the packet filter’s set of rules, the packet filter will drop or reject the
packet.
A packet filtering firewall examines the header of packet, to determine source, destination
and type of protocol.
Packet filtering firewalls work on the first three layers of OSI reference model.
Packet filters follow a set of pre-defined or user defined rules and decide which packet to
drop an which packet to accept.
If a rule is something like “drop all HTTP traffic” then all packets with HTTP header are
dropped.
HOW DOES THE PROJECT WORKS???
In our project we insert the firewall into Linux kernel and run it on ARM9 board.
The actions such as Accept, Drop are to be taken with respect to the user defined rules
based on
a) Protocol Type
b) IP address
c) Port numbers
First we assign a ip address and default gateway to our board and connect it in LAN.
If we wish to block the ICMP packets then the command can be given as