Glossary
Ingress Filtering
Ingress filtering is a network security measure used to manage and control inbound traffic to a network. By implementing ingress filtering, network administrators can ensure that only explicitly authorized traffic is allowed to enter the network, effectively blocking potential malicious or unnecessary data from gaining access.
This method involves configuring network devices, such as routers and firewalls, to apply rules or policies that define which packets of data are allowed to enter based on specific criteria such as IP addresses, port numbers, and protocols. The criteria can be tailored to the specific needs of the network, focusing on allowing only legitimate and necessary traffic to pass through while denying all other traffic, which helps to minimize the risk of cyber attacks and unauthorized access.
Ingress filtering is particularly important in defending against common network threats like Denial of Service (DoS) attacks, where unwanted or harmful traffic is directed at a network to disrupt its operations. By filtering this traffic at the network’s entry points, the impact of such attacks can be significantly reduced or mitigated.
Additionally, ingress filtering plays a crucial role in maintaining the overall health and performance of a network. By limiting the ingress traffic to only essential and approved data, the network can operate more efficiently, reducing congestion and the burden on network resources. This leads to a more reliable and faster network service for legitimate users and applications.