Packet filtering firewalls operate inline at junction points where devices such as routers and switches do their work. However, these firewalls don't route packets; rather they compare each packet received to a set of established criteria, such as the allowed IP addresses, packet type, port number and other aspects of the packet protocol headers.
Disadvantage:
-Doesn't check the payload and can be easily spoofed.
Circuit-level gateway:
Using another relatively quick way to identify malicious content, circuit-level gateways monitor TCP handshakes and other network protocol session initiation messages across the network as they are established between the local and remote hosts to determine whether the session being initiated is legitimate -- whether the remote system is considered trusted. They don't inspect the packets themselves
Disadvantage
If they aren't used in conjunction with other security technology, circuit-level gateways offer no protection against data leakage from devices within the firewall
Comments:
I'd say a Circuit-level gateway is more secure to use as the organization should have put in place other security mechanisms
What is firewall security management software? Firewall management is the group of actions and practices used for configuring and monitoring a firewall with the goal of maintaining network security. Firewalls are key elements used for protecting private networks.
Organizations may use multiple firewalls to protect devices and networks, and these can prove difficult to manage. That’s where firewall security management comes in. Firewall security management (FSM) software monitors and...
Packet filtering firewall:
Packet filtering firewalls operate inline at junction points where devices such as routers and switches do their work. However, these firewalls don't route packets; rather they compare each packet received to a set of established criteria, such as the allowed IP addresses, packet type, port number and other aspects of the packet protocol headers.
Disadvantage:
-Doesn't check the payload and can be easily spoofed.
Circuit-level gateway:
Using another relatively quick way to identify malicious content, circuit-level gateways monitor TCP handshakes and other network protocol session initiation messages across the network as they are established between the local and remote hosts to determine whether the session being initiated is legitimate -- whether the remote system is considered trusted. They don't inspect the packets themselves
Disadvantage
If they aren't used in conjunction with other security technology, circuit-level gateways offer no protection against data leakage from devices within the firewall
Comments:
I'd say a Circuit-level gateway is more secure to use as the organization should have put in place other security mechanisms
Reference:
https://www.techtarget.com/searchsecurity/feature/The-five-different-types-of-firewalls