Simulation study of firewalls to aid improved performance

Subrata Acharya, Jia Wang, Zihui Ge, Taieb Znati, Albert Greenberg

Research output: Chapter in Book/Report/Conference proceedingConference contribution

18 Citations (Scopus)


The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.

Original languageEnglish
Title of host publicationProceedings - 39th Annual Simulation Symposium
PublisherIEEE Computer Society
Number of pages8
ISBN (Print)0769525598, 9780769525594
Publication statusPublished - 2006
Externally publishedYes
Event39th Annual Simulation Symposium, 2006 - San Diego, CA, United States
Duration: Apr 2 2006Apr 6 2006

Publication series

NameProceedings - Simulation Symposium
ISSN (Print)1080-241X


Other39th Annual Simulation Symposium, 2006
Country/TerritoryUnited States
CitySan Diego, CA

ASJC Scopus subject areas

  • General Engineering


Dive into the research topics of 'Simulation study of firewalls to aid improved performance'. Together they form a unique fingerprint.

Cite this