Abstract
Firewalls are installed at network perimeters to secure organization’s network as alternatives to general galeways. Because of polenlial performance problems on the gateways, load balancing technique has been applied. However, compared to general gateways, firewalls require more intelligent load balancing method lo process massive nelwork traffic because of their relatively complex operations. In this paper, we analyze the inherent problems of existing simple load balancing methods for firewalls and propose the inlerval weighted load balancing (IWLB) to enhance the processing of massive nelwork traffics. The IWLB deals with network traffics in consideration of the characteristics of application protocols lo achieve more effective load balancing. We observed that the IWLB outperforms other simple load balancing methods during our simulation. Therefore, we expect that the IWLB is suitable to balancing loads for multiple firewalls at a network perimeter.
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Rajkumar, B.: High Performance Cluster Computing: Architecture and Systems, Volume 1, Prentice Hall PTR, (1999)
Leon-Garcia, A.: Probability and Random Process for Electrical Engineering, 2nd Ed., Addison Wesley Publishing Company, Inc., (1994)
Molloy, K.M.: Eundamentals of Performance Modeling, Macmillan Publishing Company, (1989)
Law, M.A., Kelton, W.D.: Simulation Modeling & Analysis 2nd ed., McGraw-Hill Book Co., (1991)
Cheswick, R.W., Bellovin, M.S.: Firewalls and Internet Security: repelling the willy hacker, Addison Wesley, (1994)
Chapman, D.B., Zwicky, D.E.: Building Internet Firewalls, O Reilly & Associations, Inc., (1996)
Hare, C, Siyan, K.: Internet Firewalls and Network Security-2nd ed., New Readers, (1996)
Kostic, C, Mancuso, M.: Firewall Performance Analysis Report, Computer Sciences Corporation, Secure Systems Center-Network Security Department, (1995)
Haeni, E. R.: Firewall Penetration Testing, The George Washington University, Cyberspace Policy Institute, (1997)
Test Final Report-Firewall Shootout Networkd+Interop, KeyLabs Inc., 28 May 1998.
Foundry ServerIron Firewall Load Balancing Guide, Foundry Networks, Inc., (2001)
Carnegie Mellon University, CCERT Advisory CA-2001-26 Nimda Worm, CERT/CC, http://www.cert.org/advisories/CA-2001-26.html, (2001)
Carnegie Mellon University, CERT Incident Note IN-99-07: Distributed Denial of Service Tools, CERT/CC, http://www.cert.org/incident_notes/IN-99-07.html, (1999)
McCreary, S., Claffy, K.: Trends in wide area IP traffic patterns-A view from Ames Internet Exchange, Proceedings of 13 th ITC Specialist Seminar on Internet Traffic Measurement and Modeling, Monterey, CA. 18–20, (2000)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Woo, B.K., Kim, D.S., Hong, S.S., Kim, K.H., Chung, T.M. (2002). Interval Weighted Load Balancing Method for Multiple Application Gateway Firewalls. In: Sloot, P.M.A., Hoekstra, A.G., Tan, C.J.K., Dongarra, J.J. (eds) Computational Science — ICCS 2002. ICCS 2002. Lecture Notes in Computer Science, vol 2331. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-47789-6_111
Download citation
DOI: https://doi.org/10.1007/3-540-47789-6_111
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-43594-5
Online ISBN: 978-3-540-47789-1
eBook Packages: Springer Book Archive