Change search
ReferencesLink to record
Permanent link

Direct link
Design, Structure and Development of Transparent Redundancy for Firewalls: Using the Firewall Redundancy Protocol
KTH, Superseded Departments, Teleinformatics. (CCSlab)
2000 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Due to the rapid increase of Internet users the need for secure connections between private networks and the Internet grows very fast. The solution to this security problem is the firewall. But since all traffic to external networks then has to go through the firewall, a single-point-of-failure is created. To avoid this and enable multiple cooperating parallel firewalls, the Firewall Redundancy Protocol (FRP) was specified.

The aim of this Master Thesis was to develop a design for an implementation of FRP and propose a basis for a test specification of a future protocol implementation. The literature study has concentrated on firewalls in general and the Effnet FTC500FR firewall in particular. An analysis of other firewall redundancy solutions existing today has also been done.

The design developed is for implementation in C, but through using an object oriented approach in the design phase an implementation in C++ should not lead to any extensive changes. The solution has 12 classes including test and simulation classes and interfaces towards the configuration system and kernel. It is possible to customize the settings with high granularity for each group of cooperating parallel firewalls, hence providing a flexible redundancy solution. Based on the work in this Master Thesis it is now possible to implement the firewall redundancy solution with FRP.

Place, publisher, year, edition, pages
2000. , 76 p.
National Category
Communication Systems
URN: urn:nbn:se:kth:diva-93520OAI: diva2:516854
Subject / course
Educational program
Master of Science in Engineering - Electrical Engineering
2000-12-21, Seminar room "Telegrafen", Isafjordsgatan 22, Kista, 09:00 (English)
Available from: 2012-06-18 Created: 2012-04-20 Last updated: 2013-09-09Bibliographically approved

Open Access in DiVA

No full text

Search in DiVA

By author/editor
Jyde, Tomas
By organisation
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 4 hits
ReferencesLink to record
Permanent link

Direct link