stateful inspection

Also referred to as dynamic packet filtering. Stateful inspection is a firewall architecture that works at the network layer. Unlike static packet filtering, which examines a packet based on the information in its header, stateful inspection tracks each connection traversing all interfaces of the firewall and makes sure they are valid. An example of a stateful firewall may examine not just the header information but also the contents of the packet up through the application layer in order to determine more about the packet than just information about its source and destination. A stateful inspection firewall also monitors the state of the connection and compiles the information in a state table. Because of this, filtering decisions are based not only on administrator-defined rules (as in static packet filtering) but also on context that has been established by prior packets that have passed through the firewall.

As an added security measure against port scanning, stateful inspection firewalls close off ports until connection to the specific port is requested.

Check Point Software is credited with coining the term stateful inspection in the use of its FireWall-1 in 1993.

Previous
Term

Next
Term

Top Terms

1

Google Glass

Google's project program for developing a line of hands-free, head-mounted intelligent devices that can be worn by users as eyewear.

Read more »
2

ERP - Enterprise Resource Planning

Short for enterprise resource planning, ERP is business management software that allows an organization to use a system of integrated applications...

Read more »
3

private cloud project

Companies initiate private cloud projects to enable their IT infrastructure to become more capable of quickly adapting to continually evolving...

Read more »
4

cloud backup

A cloud backup (cloud computer backup) refers to backing up data to a remote, cloud-based server. As a form of cloud storage, cloud backup data is...

Read more »
5

Raring Ringtail (Ubuntu Codename)

Raring Ringtail is the Ubuntu codename for version 13.04 of the Ubuntu Linux-based operating system.

Read more »
6

resistive memory - ReRAM, RRAM

ReRAM, or resistive memory cells, is a type of non-volatile memory that is considered to be a type of memristor technology.

Read more »
7

BYOD - bring your own device

A phrase that has become widely adopted to refer to mobile workers bringing their own mobile devices, such as smartphones, laptops and PDAs, into...

Read more »
8

CRM - Customer Relationship Management

Short for customer relationship management, CRM entails all aspects of interaction a company has with its customer, whether it be sales or service...

Read more »
9

mobile operating system

The mobile operating system is the software platform on top of which other programs, called application programs, can run on mobile devices.

Read more »
10

private cloud

The phrase used to describe a cloud computing platform that is implemented within the corporate firewall, under the control of the IT department....

Read more »

Connect with Webopedia

Webopedia on Facebook

Connect with Webopedia on Facebook!

Webopedia on Twitter

Connect with Webopedia on Twitter!

Did You Know?

What is 250 GB Data Usage?

What is 250 GB (250 gigabytes) and why is this phrase so popular? Webopedia explains what the phrase 250 GB means in reference to data storage...

Read More »

Did You Know? Archive »

stateful inspection

Related Links

Google Glass

ERP - Enterprise Resource Planning

private cloud project

cloud backup

Raring Ringtail (Ubuntu Codename)

resistive memory - ReRAM, RRAM

BYOD - bring your own device

CRM - Customer Relationship Management

mobile operating system

private cloud

Connect with Webopedia

Webopedia on Facebook

Webopedia on Twitter

What is 250 GB Data Usage?

Android Apps to Secure Your Device Data

Technology Hashtags: Webopedia's Twitter Guide to Technology Topics

BYOD Security White Papers and Resources for Businesses

stateful inspection

Related Terms

Related Links

Connect with Webopedia

Webopedia Weekly