Skip to main content
Home/Glossary/Firewall

Firewall

A security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules.

Security InfrastructureAlso called: "network firewall", "packet filter"

Firewalls act as barriers between trusted internal networks and untrusted external networks, filtering traffic to prevent unauthorized access and attacks.

Types of firewalls

  • Packet-filtering: Inspects packets against basic rules (IP, port, protocol).
  • Stateful inspection: Tracks connection states for context-aware filtering.
  • Application-layer: Deep packet inspection at the application level (Layer 7).
  • Next-generation (NGFW): Combines traditional filtering with IPS, malware detection, and application awareness.
  • Web application firewall (WAF): Protects web apps from HTTP-based attacks.

Why it matters

  • First line of defense against network-based attacks and unauthorized access.
  • Reduces attack surface by blocking unused ports and services.
  • Provides segmentation between network zones (DMZ, internal, external).
  • Required for compliance with PCI DSS, HIPAA, and other frameworks.

Implementation best practices

  • Deploy in layers: perimeter firewalls, internal segmentation, host-based firewalls.
  • Follow least-privilege principles: deny by default, allow only necessary traffic.
  • Regularly review and audit firewall rules to remove outdated entries.
  • Enable logging and monitoring for security event correlation.
  • Keep firmware updated and test rule changes in staging environments.

Related Tools

Related Articles

View all articles
📄

How to Use Claude Code From Your Phone With /remote-control

Claude Code's Remote Control feature lets you steer a coding session running on your machine from your phone, tablet, or browser. Here's how to set it up, when it beats Claude Code on the web, and the security model behind it.

Read article →
📄

Fixing AI Coding CLIs Behind a Corporate Firewall (Proxy, TLS, Zscaler, CA Certs)

A definitive enterprise troubleshooting guide for getting Claude Code, Codex, Gemini, Antigravity, and Qwen working behind corporate proxies, TLS inspection, and custom CA certificates.

Read article →
📄

Grok vs Regex: What's the Difference and When to Use Each

Grok vs regex isn't a fight. Grok IS regex with a reusable naming layer for log parsing. Here is when to reach for each and how to convert between them.

Read article →
📄

Grok Pattern Examples for Common Log Formats (Nginx, Apache, Syslog, and More)

Copy-paste grok patterns for Nginx, Apache, syslog, Java, AWS ELB, HAProxy, Postgres, IIS, Docker and more — every one tested against a real sample log.

Read article →

Explore More Security Infrastructure

View all terms

Certificate Authority (CA)

A trusted entity that issues, validates, and revokes digital certificates used for secure communications.

Read more →

VPN (Virtual Private Network)

An encrypted network connection that creates a secure tunnel between a device and a remote network over the internet.

Read more →
Back to glossary