Firewalls are network security systems positioned between internal and external networks to isolate them. Their fundamental functions include zone isolation, access control, attack protection, and redundancy design. However, firewalls also face numerous security challenges, with Distributed Denial of Service (DDoS) attacks being a major concern, particularly the Denial of Firewalling (DoF) attacks targeting firewalls. Despite extensive research on DDoS attacks against traditional networks, relatively fewer studies focus on DoF attacks. To comprehensively understand the latest research progress and inspire the development of new solutions to counter DoF attacks, this paper conducts an extensive survey of existing research progress and forms a review. Firstly, we analyze the principles of DDoS attacks against firewalls, as well as the security risks of new firewall technologies, and classify them based on attack rates and target components of firewalls. Secondly, we analyze and evaluate existing DoF attack detection technologies. Next, we summarize existing DoF attack mitigation techniques. Finally, we discuss current challenges and open issues. It is hoped that this research work will assist relevant researchers in effectively addressing DoF attacks.

Denial of Firewalling attacks, attack classification, attack detection, attack mitigation