Home/Glossary/Firewall

Firewall

A security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Security InfrastructureAlso called: "network firewall", "packet filter"

Firewalls act as barriers between trusted internal networks and untrusted external networks, filtering traffic to prevent unauthorized access and attacks.

Types of firewalls

  • Packet-filtering: Inspects packets against basic rules (IP, port, protocol).
  • Stateful inspection: Tracks connection states for context-aware filtering.
  • Application-layer: Deep packet inspection at the application level (Layer 7).
  • Next-generation (NGFW): Combines traditional filtering with IPS, malware detection, and application awareness.
  • Web application firewall (WAF): Protects web apps from HTTP-based attacks.

Why it matters

  • First line of defense against network-based attacks and unauthorized access.
  • Reduces attack surface by blocking unused ports and services.
  • Provides segmentation between network zones (DMZ, internal, external).
  • Required for compliance with PCI DSS, HIPAA, and other frameworks.

Implementation best practices

  • Deploy in layers: perimeter firewalls, internal segmentation, host-based firewalls.
  • Follow least-privilege principles: deny by default, allow only necessary traffic.
  • Regularly review and audit firewall rules to remove outdated entries.
  • Enable logging and monitoring for security event correlation.
  • Keep firmware updated and test rule changes in staging environments.

Related Tools

Related Articles

View all articles
Formal Security Models Explained: Bell-LaPadula, Biba, Clark-Wilson, and Beyond

Formal Security Models Explained: Bell-LaPadula, Biba, Clark-Wilson, and Beyond

Master the formal security models that underpin all access control systems. This comprehensive guide covers Bell-LaPadula, Biba, Clark-Wilson, Brewer-Nash, lattice-based access control, and how to choose the right model for your organization.

Read article →
NIST 800-88 Media Sanitization Complete Guide: Clear, Purge, and Destroy Methods Explained

NIST 800-88 Media Sanitization Complete Guide: Clear, Purge, and Destroy Methods Explained

Master NIST SP 800-88 Rev. 1 media sanitization methods including Clear, Purge, and Destroy. Covers SSD vs HDD sanitization, crypto erase, degaussing, regulatory compliance, and building a media sanitization program.

Read article →
Check Point Harmony vs Proofpoint: Choosing Email Security for Google Workspace

Check Point Harmony vs Proofpoint: Choosing Email Security for Google Workspace

Compare legacy Secure Email Gateways (SEG) like Proofpoint with modern API-based email security solutions like Check Point Harmony for Google Workspace environments. Learn why architecture matters for cloud email protection.

Read article →
Webhook Testing & Debugging: Complete Guide to Local Development and Troubleshooting

Webhook Testing & Debugging: Complete Guide to Local Development and Troubleshooting

Master webhook testing and debugging with ngrok, Cloudflare Tunnel, RequestBin, and custom test harnesses. Learn systematic approaches to troubleshoot webhook failures in development and production.

Read article →

Explore More Security Infrastructure

View all terms

Certificate Authority (CA)

A trusted entity that issues, validates, and revokes digital certificates used for secure communications.

Read more →

VPN (Virtual Private Network)

An encrypted network connection that creates a secure tunnel between a device and a remote network over the internet.

Read more →
Back to glossary