File tree Expand file tree Collapse file tree 3 files changed +15
-471
lines changed
Expand file tree Collapse file tree 3 files changed +15
-471
lines changed Original file line number Diff line number Diff line change @@ -18,7 +18,7 @@ The historical meaning of a firewall is a barrier to prevent the
1818spread of fire from one part of a building to another. Firewalls are also
1919present in many automotive vehicles to separate passengers from the
2020noisy (and possibly fire-prone) engine compartment. Saltzer and
21- Schroeder in 1975 applied the term, possibly for the first time, in
21+ Schroeder in 1975 applied the term, possibly for the first time in
2222the context of computer security, when discussing least privilege.
2323
2424A network firewall is a system that typically sits between two regions
@@ -324,7 +324,10 @@ of lateral movement attacks are extremely common and have been well
324324documented, often lasting for months before they are detected.
325325
326326The obvious solution to problems of lateral movement would seem to be
327- internal firewalls.
327+ internal firewalls. However, such a solution raises a new set of
328+ challenges. Consider the example in :numref: `Figure %s
329+ <fig-dc-firewall>`, in which a single firewall has been deployed to
330+ filter traffic flows among a set of virtual machines in a datacenter.
328331
329332
330333
You can’t perform that action at this time.
0 commit comments