Payload
- The "passenger" from a network view
- Deep Packet Inspection /Intrusion Prevention
- Data Loss Prevention
- Look for data leaving the network with a specific format
- Anti-phishing
- ENGINE
- Cisco makes Email Security Appliance (ESA)
- It analyzes the contents of an email and identify phishing or scams
Application Layer Appliances
- IDS / IPS
- Intrusion Detection System (IDS) just tells you about it.
- Intrusion Prevention System (IPS) can actually stop it.
- Load balancer
- Load balance through DNS
- We can give out different IP addresses to different servers and different data centers based on the time of day, based on the cost of energy, based on the person who's asking where the server is (location based).
- Load balance through the Data Center
- Once you get to the data center an Application Delivery Controllers (ADC), it sees a request coming and says "okay let me talk to one of my 10 web servers in the back"
- Many times a load balancer is jus ta proxy that sits in front of a bunch of web servers and helps facilitate delivery of all this messages
- Web content filters
- We can block content based of category
- Proxy
- Proxy servers are intermediate devices that build connections on behalf of users and give us very granular control over all their data
- Web Application Firewalls
- It's a firewall but instead of looking at all applications on all port numbers, it's specific, it just looks at web applications, it's a dedicated appliance.