Packet Filters
Examines the source and destination address of packets passing through
- Allows only packets that have acceptable addresses to pass
- Examines IP Addresses and TCP ports only
- Firewall is unaware of applications and what the intruder is trying to do
IP spoofing remains a problem
- Done by simply changing the source address of incoming packets from their real address to an address inside the organization’s network
- Firewall will pass this packet