Unified Threat Management Technology | GTA, Inc.
GB-OS System Software Concepts
The GB-OS System Software is at the core of all GTA firewall products. It was originally developed in 1996 and was based on GTA's earlier GFX firewall technology. The system was designed to be small and efficient. The early versions of the GB-OS System software ran on a 386 CPU with only 8 MB of RAM! Features and requirements have increased since 1996, however the basic design concepts can still be found in the current GB-OS System software.

The GB-OS System software is built on core technology from the BSD Unix operating system. Although it has many attributes of the Unix operating system the GB-OS System software is not really a Unix system. The system is dedicated to network security and has no shell or facilities to run user applications.

At the heart of the GB-OS System software is our stateful packet inspection and network address translation (NAT) technology (originally developed in 1994).

The NAT and stateful packet inspection facilities are tightly integrated into the network layer to guarantee maximum data throughput. The stateful packet inspection facility monitors every IP packet passing through the firewall to guarantee that:

  • Network address translation is performed for all packets passing through the system outbound (unless disabled by our IP Pass Through facility).
     
  • Only valid response packets or packets passing through user defined tunnels are allowed to reach hosts on the Protected or PSN networks from the unprotected network.
Eight Basic Concepts
  The following eight basic concepts along with illustrations are helpful in understand the operation of the GB-OS system software.

Concept 1

Outbound packets from the Protected network to the External network.
 

Concept 2

Outbound packets from the Protected network to the Private Service
network (DMZ).
 

Concept 3

Outbound packets from the Private Service network to the External network.
 

Concept 4

Unsolicited packets arriving at the External network interface.
 

Concept 5

Unsolicited packets arriving at the Private Service network interface.
 

Concept 6

Packets tunneled from the External network to the Private Service network.
 

Concept 7

Packets tunneled from the Private Service network to the Protected network.
 

Concept 8

Packets tunneled from the External network to the Protected network.
 

Copyright © 2014 Global Technology Associates, Inc. All rights reserved.

'GB-OS' and 'GB-Ware' are registered trademarks of Global Technology Associates, Incorporated.
'Global Technology Associates' and 'GTA' are service marks of Global Technology Associates, Incorporated.