What is a firewall? A firewall is a system that is designed toprevent unauthorized access from entering a private network byfiltering the information that comes in from the internet. A firewall blocksunwanted traffic and permits wanted traffic.
So a firewall’s purpose is to create a safetybarrier between a private network and the public internet. Because out on the internet, there’s alwaysgoing to be hackers and malicious traffic that may try to penetrate into a private networkto cause harm. And a firewall is the main component on anetwork to prevent this.
and a firewall is especially important to a largeorganization that has a lot of computers and servers in them. Because you don’t want all those devicesaccessible to everyone on the internet where a hacker can come in and totally disrupt thatorganization. That’s why you need a firewall to protectthem.
A firewall that’s used in computer networksis very similar to how a firewall works in a building structure. In fact..this is where the word ‘firewall’came from. A firewall in a building structure provides a barrier so that in the event ofan actual fire, on either side of a building, the firewall is there to keep the fire containedand to keep it from spreading over to the other side. So the firewall is there to keep the fire from destroyingthe entire building.
But if the firewall wasn’t here, the firewould spread to the other side and the whole building would be destroyed. And a network firewall works in a similarway as a structure firewall. It stops harmful activity before it can spread into the other sideof the firewall and cause harm to a private network. In today’s high-tech world, a firewall isessential to every home and especially a business or an organizaton to keeptheir network safe. A firewall works by filtering the incomingnetwork data and determines by its rules if it isallowed to enter a network, these rules are also known as an access control list.
These rules are customizable and are determinedby the network administrator. The administrator decides not only what canenter a network but also what can leave a network. These rules either allows or denies permission. So as an example, here we have some rules in a firewall’s access control list. It shows a list of IP addresses thathave been allowed or denied by this firewall. And as you can see, traffic from some IPaddresses are allowed to enter this network..but traffic from one IP address has been denied. So, if traffic from this IP address tried toget into this network, the firewall will deny it becauseof the rules that are set in the firewall..
But the other IPaddresses are granted access because the rules Allow them. Firewalls don’t just make rules based inIP addresses, but they can also make rules based on domain names, protocols, programs, ports, and keywords. Let’s say in this example, the firewallrules are controlling access by port numbers. and let’s say that the rules have allowedincoming data that’s using port number 80, 25, and 110, and the data usingthose ports have been given access to this network.
So any incoming data that’s using thoseports, can pass through the firewall. But also in this firewall, the rules havedenied any data that’s using port numbers 23 and 3389. So any incoming data that’s using thoseport numbers, the firewall will deny access and it won’t get passed the firewall. So in a nutshell this is how firewalls basicallywork. Firewalls come indifferent types. Onetype is called a host-based firewall, and thisis a software firewall.
This is the kind offirewall that is installed on a computer and itprotects that computer only and nothing else. For example, laterversions of Microsoft operating systems comepre-packaged with a host-baseball firewall. And you can see that example here. There are also 3rd party host-based firewallscan be purchased and installed on a computer. So for example, Zone Alarm..which is a popular 3rdparty host-based firewall. And also a lot of antivirus programs will have a built in host-based firewall. Another type of firewall is called a network-basedfirewall.
A network-based firewall is a combinationof hardware and software, and it operates atthe network layer. It is placed between a private network and the public internet But unlike a host-based firewall, where itonly protects that computer, a network-based firewall protects the entire network, and itdoes this through management rules that are appliedto the entire network so that any harmful activitycan be stopped before it reaches the computers.
Network-based firewalls can be a stand aloneproduct …which is mainly used by large organizations. They can also be built-in as a component ofa router..which is what a lot of smaller organizations rely on. Or they can also be deployed in a serviceprovider’s cloud infrastructure. Now, alot of organizations will use both network-based and host-based of firewalls..
They will use a network-based firewall toprotect the entire network as a whole…and they will also use host-based firewalls fortheir individual protection for their computers and servers. And by doing this, it’ll ensure maximum protection . Because if harmful data just so happens toget passed the network firewall…the host based firewalls on each computer will be thereto stop it.