A firewall that examines an incoming packet and takes action based strictly on the rule base
The weaknesses of static (or stateless) packet filters and stateful packet filters are different in a few ways. Stateless packet filters frequently block SYN scans of networks, but .... Stateless packet filters. (cf. iptables connection tracking), cf. state vs. stateless discussion. confounded application layer protocols like FTP, H323 Because of the nature of connection tracking and state awareness, stateful packet filters are vulnerable to resource exhaustion and deliberate attempts to trip rate-limiting features.
"A static packet filtering firewall is the simplest method of filtering traffic."
Nopes, definitely no. I would rather say that "Packet Filtering" is the primary job of a Firewall.
Filtering is the process of analyzing the contents of a packet to determine if the packet should be allowed or blocked.
stateful packet filtering
packet-filtering
gand marava
Actually not all routers are stateless devices. There are stateful routers also. The definition depends on the IP filtering and routing algorithms used. Routers which have static IP filters and routing tables are of the stateless type. Routers with Static IP filters allow direct connections from the external network to hosts on the internal network and typically there is no authentication. More intelligent and secure routers with dynamic IP address and packet based filtering are known as stateful type. Stateful routers can also have application proxies or gateways. These have more overheads for processing packets passing through the routers. - Neeraj Sharma
Deep packet filtering first examines the data part (and possibly also the header) of a packet as it passes an inspection point, searching for protocol non-compliance, viruses, spam, intrusions or predefined criteria to decide if the packet can pass or if it needs to be routed to a different destination, or for the purpose of collecting statistical information. This differs from "stateful packet inspection" (shallow filtering) where only the type of traffic and possibly the source and destination are inspected, not the contents of the traffic.
A stateless firewall does not keep information about existing connections, TCP sequence numbers, and other information. It analyzes packets independently, not as part of the packet sequence.
Deny all except specified hosts.
Stateless Packet Filters