Github Linkedin X Official Website Feedback

Network Firewalls: A Critical Component of Network Security

You know what network device we haven't mentioned that you're probably super familiar with? A firewall. A firewall is just a device that blocks traffic that meets certain criteria. Firewalls are a critical concept to keeping a network secure since they're the primary way you can stop traffic you don't want from entering the network.

๐Ÿ”’ Operating at Different Layers

Firewalls can actually operate at lots of different layers of the network. There are firewalls that can perform inspection of application layer traffic and firewalls that primarily deal with blocking ranges of IP addresses. The reason we cover firewalls here is that they're most commonly used at the transportation layer.

๐Ÿ”Œ Transportation Layer Firewalls

Firewalls that operate at the transportation layer will generally have a configuration that enables them to block traffic to certain ports while allowing traffic to other ports.

๐Ÿข Example Scenario: Small Business Network

Let's imagine a simple small business network. The small business might have one server which hosts multiple network services. The server might have a web server that hosts the company's website while also serving as the file server for a confidential internal document. A firewall placed at the perimeter of the network could be configured to allow anyone to send traffic to port 80 in order to view the web page. At the same time, it could block all access for external IPs to any other port so that no one outside of the local area network could access the file server.

๐ŸŒ Firewalls as Network Devices or Host Programs

Firewalls are sometimes independent network devices, but it's really better to think of them as a program that can run anywhere. For many companies and almost all home users, the functionality of a router and a firewall is performed by the same device. Firewalls can run on individual hosts instead of being a network device. All major modern operating systems have firewall functionality built in. That way, blocking or allowing traffic to various ports and therefore to specific services can be performed at the host level as well.

Firewalls are an essential component of network security, providing control over network traffic and safeguarding against unauthorized access.

๐Ÿ”ฅ๐Ÿ”’

PreviousSupplemental Reading for System Ports versus Ephemeral PortsNext3.The Application Layer

Last updated