Introduction of Firewall in Computer

Network
Last Updated : 04 Feb, 2025





A firewall is a network security device either hardware or software-based

which monitors all incoming and outgoing traffic and based on a defined set of
security rules it accepts, rejects, or drops that specific traffic. It acts like a
security guard that helps keep your digital world safe from unwanted visitors
and potential threats.
 Accept: allow the traffic
 Reject: block the traffic but reply with an “unreachable error”
 Drop: block the traffic with no reply
A firewall is a type of network security device that filters incoming and
outgoing network traffic with security policies that have previously been set up
inside an organization. A firewall is essentially the wall that separates a private
internal network from the open Internet at its very basic level.

Need For Firewall

Before Firewalls, network security was performed by Access Control
Lists (ACLs) residing on routers. ACLs are rules that determine whether
network access should be granted or denied to specific IP address. But ACLs
cannot determine the nature of the packet it is blocking. Also, ACL alone does
not have the capacity to keep threats out of the network. Hence, the Firewall
was introduced. Connectivity to the Internet is no longer optional for
organizations. However, accessing the Internet provides benefits to the
organization; it also enables the outside world to interact with the internal
network of the organization. This creates a threat to the organization. In order
to secure the internal network from unauthorized traffic, we need a Firewall.
History of Firewalls
 Late 1980s: Jeff Mogul, Brian Reid, and Paul Vixie at Digital Equipment
Corp (DEC) developed packet-filtering technology, laying the groundwork
 for firewalls by checking external connections before they reached internal
networks.
 Late 1980s – Early 1990s: AT&T Bell Labs researchers, including Presotto,
Sharma, and Nigam, developed the circuit-level gateway, a firewall that
vetted ongoing connections without reauthorizing each data packet, paving
the way for more efficient security.
 1991-1992: Marcus Ranum introduced security proxies at DEC, leading to
the creation of the Secure External Access Link (SEAL), the first
commercially available application-layer firewall, based on earlier DEC work.
 1993-1994: At Check Point, Gil Shwed pioneered stateful inspection
technology, filing a patent in 1993. Nir Zuk developed a graphical interface
for Firewall-1, making firewalls accessible and widely adopted by
businesses and homes
Working of Firewall
 Firewall match the network traffic against the rule set defined in its table.
Once the rule is matched, associate action is applied to the network traffic.
For example, Rules are defined as any employee from Human Resources
department cannot access the data from code server and at the same time
another rule is defined like system administrator can access the data from
both Human Resource and technical department.
 Rules can be defined on the firewall based on the necessity and security
policies of the organization.
 From the perspective of a server, network traffic can be either outgoing or
incoming. Firewall maintains a distinct set of rules for both the cases. Mostly
the outgoing traffic, originated from the server itself, allowed to pass. Still,
setting a rule on outgoing traffic is always better in order to achieve more
security and prevent unwanted communication. Incoming traffic is treated
differently.
 Most traffic which reaches on the firewall is one of these three major
Transport Layer protocols- TCP, UDP or ICMP. All these types have a source
address and destination address. Also, TCP and UDP have port numbers.
ICMP uses type code instead of port number which identifies purpose of that
packet.
Default policy: It is very difficult to explicitly cover every possible rule on the
firewall. For this reason, the firewall must always have a default policy. Default
policy only consists of action (accept, reject or drop). Suppose no rule is
defined about SSH connection to the server on the firewall. So, it will follow the
default policy. If default policy on the firewall is set to accept, then any
computer outside of your office can establish an SSH connection to the server.
Therefore, setting default policy as drop (or reject) is always a good practice.
Types of Firewall
Firewalls can be categorized based on their generation.

1. Packet Filtering Firewall

Packet filtering firewall is used to control network access by monitoring
outgoing and incoming packets and allowing them to pass or stop based on
source and destination IP address, protocols, and ports. It analyses traffic at
the transport protocol layer (but mainly uses first 3 layers). Packet firewalls
treat each packet in isolation. They have no ability to tell whether a packet is
part of an existing stream of traffic. Only It can allow or deny the packets
based on unique packet headers. Packet filtering firewall maintains a filtering
table that decides whether the packet will be forwarded or discarded. From the
given filtering table, the packets will be filtered according to the following
rules:

 Incoming packets from network 192.168.21.0 are blocked.

 Incoming packets destined for the internal TELNET server (port 23) are
blocked.
 Incoming packets destined for host 192.168.21.3 are blocked.
 All well-known services to the network 192.168.21.0 are allowed.
2. Stateful Inspection Firewall
Stateful firewalls (performs Stateful Packet Inspection) are able to determine
the connection state of packet, unlike Packet filtering firewall, which makes it
more efficient. It keeps track of the state of networks connection travelling
across it, such as TCP streams. So the filtering decisions would not only be
based on defined rules, but also on packet’s history in the state table.

3. Application Layer Firewall

Application layer firewall can inspect and filter the packets on any OSI layer,
up to the application layer. It has the ability to block specific content, also
recognize when certain application and protocols (like HTTP, FTP) are being
misused. In other words, Application layer firewalls are hosts that run proxy
servers. A proxy firewall prevents the direct connection between either side of
the firewall, each packet has to pass through the proxy.
4. Next Generation Firewalls (NGFW)
NGFW consists of Deep Packet Inspection, Application
Inspection, SSL/SSH inspection and many functionalities to protect the network
from these modern threats.

5. Circuit Level Gateway Firewall

This works as the Sessions layer of the OSI Model’s . This allows for the
simultaneous setup of two Transmission Control Protocol (TCP) connections. It
can effortlessly allow data packets to flow without using quite a lot of
computing power. These firewalls are ineffective because they do not inspect
data packets; if malware is found in a data packet, they will permit it to pass
provided that TCP connections are established properly.
6. Software Firewall
A software firewall is any firewall that is set up locally or on a cloud server.
When it comes to controlling the inflow and outflow of data packets and
limiting the number of networks that can be linked to a single device, they
may be the most advantageous. But the problem with software firewall is they
are time-consuming.

7. Hardware Firewall
They also go by the name “firewalls based on physical appliances.” It
guarantees that the malicious data is halted before it reaches the network
endpoint that is in danger.

8. Cloud Firewall
These are software-based, cloud-deployed network devices. This cloud-based
firewall protects a private network from any unwanted access. Unlike
traditional firewalls, a cloud firewall filters data at the cloud level.
Importance of Firewalls
So, what does a firewall do and why is it important? Without protection,
networks are vulnerable to any traffic trying to access your systems, whether
it’s harmful or not. That’s why it’s crucial to check all network traffic.
When you connect personal computers to other IT systems or the internet, it
opens up many benefits like collaboration, resource sharing, and creativity.
But it also exposes your network and devices to risks like hacking, identity
theft, malware, and online fraud.
Once a malicious person finds your network, they can easily access and
threaten it, especially with constant internet connections.
Using a firewall is essential for proactive protection against these risks. It helps
users shield their networks from the worst dangers.
What Does Firewall Security Do?
A firewall serves as a security barrier for a network, narrowing the attack
surface to a single point of contact. Instead of every device on a network being
exposed to the internet, all traffic must first go through the firewall. This way,
the firewall can filter and block non-permitted traffic, whether it’s coming in or
going out. Additionally, firewalls help create a record of attempted
connections, improving security awareness.
What Can Firewalls Protect Against?
 Infiltration by Malicious Actors: Firewalls can block suspicious
connections, preventing eavesdropping and advanced persistent threats
(APTs).
 Parental Controls: Parents can use firewalls to block their children from
accessing explicit web content.
 Workplace Web Browsing Restrictions: Employers can restrict
employees from using the company network to access certain services and
websites, like social media.
 Nationally Controlled Intranet: Governments can block access to certain
web content and services that conflict with national policies or values.
By allowing network owners to set specific rules, firewalls offer customizable
protection for various scenarios, enhancing overall network security.
Advantages of Using Firewall
 Protection From Unauthorized Access: Firewalls can be set up to
restrict incoming traffic from particular IP addresses or networks, preventing
hackers or other malicious actors from easily accessing a network or
system. Protection from unwanted access.
 Prevention of Malware and Other Threats: Malware and other threat
prevention: Firewalls can be set up to block traffic linked to known malware
or other security concerns, assisting in the defense against these kinds of
attacks.
 Control of Network Access: By limiting access to specified individuals or
groups for particular servers or applications, firewalls can be used to restrict
access to particular network resources or services.
 Monitoring of Network Activity: Firewalls can be set up to record and
keep track of all network activity.
 Regulation Compliance: Many industries are bound by rules that demand
the usage of firewalls or other security measures.
 Network Segmentation: By using firewalls to split up a bigger network
into smaller subnets, the attack surface is reduced and the security level is
raised.
Disadvantages of Using Firewall
 Complexity: Setting up and keeping up a firewall can be time-consuming
and difficult, especially for bigger networks or companies with a wide
variety of users and devices.
 Limited Visibility: Firewalls may not be able to identify or stop security
risks that operate at other levels, such as the application or endpoint level,
because they can only observe and manage traffic at the network level.
 False Sense of Security: Some businesses may place an excessive
amount of reliance on their firewall and disregard other crucial security
measures like endpoint security or intrusion detection systems.
 Limited adaptability: Because firewalls are frequently rule-based, they
might not be able to respond to fresh security threats.
 Performance Impact: Network performance can be significantly impacted
by firewalls, particularly if they are set up to analyze or manage a lot of
traffic.
 Limited Scalability: Because firewalls are only able to secure one
network, businesses that have several networks must deploy many
firewalls, which can be expensive.
 Limited VPN support: Some firewalls might not allow
complex VPN features like split tunneling, which could restrict the
experience of a remote worker.
 Cost: Purchasing many devices or add-on features for a firewall system can
be expensive, especially for businesses.
Question: A packet filtering firewall can [ISRO CS 2013]
(A) Deny certain users from accessing a service
(B) Block worms and viruses from entering the network
(C) Disallow some files from being accessed through FTP
(D) Block some hosts from accessing the network
Answer: Option (D)
For more details you can refer ISRO | ISRO CS 2013 | Question 44 published
quiz.
Firewall in Computer Network
Visit Course
Frequently Asked Questions on Firewall – FAQs
Can Network Speeds Be Slowed Down by a Firewall?
Yes, Network speeds can be slowed down by a firewall.
How do firewall stop traffic?
The firewall acts as a constant filter, analyzing incoming data and blocking
anything that appears suspicious from entering your network to protect
system.
Can Firewalls Stop Worms?
Yes, Installing a firewall helps prevent worms and malicious software from
infecting a computer in addition to blocking unwanted traffic.

Dreaming of M.Tech in IIT? Get AIR under 100 with our GATE 2026 CSE & DA
courses! Get flexible weekday/weekend options, live mentorship,
and mock tests. Access exclusive features like All India Mock Tests, and
Doubt Solving—your GATE success starts now!

Comment
More info
Placement Training Program
Next Article
Intrusion Detection System (IDS)
Similar Reads

Difference between Traditional Firewall and Next Generation

Firewall
With the development of cyber threats, advanced protection mechanisms are
highly required for network protection by organizations. Firewalls serve as the
base defense between trusted internal networks and untrusted external
networks by separating these two with its existence. Traditional Firewalls and
NGFWs gradually developed from these time-evolv
5 min read

Difference Between Hardware Firewall and Software Firewall

A firewall is a network security system or shielding layer that lies between the
internet and the computer networks. A firewall typically set up a barrier
between a trusted network and an untrusted network. An Internet firewall is a
device or software which is designed to protect your computer from data and
viruses that you do not want. What is a S
4 min read

Types of Network Firewall

Network Firewalls are the devices that are used to prevent private networks
from unauthorized access. A Firewall is a security solution for the computers or
devices that are connected to a network, they can be either in the form of
hardware as well as in form of software. It monitors and controls the incoming
and outgoing traffic (the amount of da
7 min read

Why Star network is More Efficient in Network Fault Tolerance

in Place of Bus Network?
Answer: Star networks offer better fault tolerance than bus networks because
a single point of failure in a star network (the central hub) affects only the
connected device, while a fault in a bus network can disrupt communication
for all devices on the bus.Advantages of Star Topology Over Bus Topology
Individual Connection Points: In a star networ
2 min read

Basic Network Attacks in Computer Network

Many people rely on the Internet for many of their professional, social and
personal activities. But there are also people who attempt to damage our
Internet-connected computers, violate our privacy and render inoperable the
Internet services. Given the frequency and variety of existing attacks as well
as the threat of new and more destructive futu
7 min read

How to Find Network IP Address of Computer Using Computer

Name?
Answer: By using the command "ping" followed by the computer name in the
command prompt or terminal.To find the network IP address of a computer
using its computer name: Open Command Prompt or Terminal Begin by
opening the Command Prompt (Windows) or Terminal (macOS/Linux) on your
computer. Use the Ping Command Type "ping" followed by the computer
1 min read

Zone-based firewall
A firewall is a network security system that monitors and takes actions on the
incoming and outgoing packets based on the defined rules. It can be a
hardware device or software. An organization that cannot afford a hardware
firewall device uses an alternative i.e implementing firewall features on Cisco
IOS router by using CBAC or by using a Zone-ba
4 min read

Firewall methodologies
A firewall is a network security system that monitors and takes actions (permit
or deny traffic) on the basis of policies defined explicitly. It can be performed
by a single device, group of devices, or by software running on a single device
like a server. Cisco ASA has the biggest share in the market while there are
other vendors of firewall also
5 min read

The Importance of Using a Firewall

Overview :A firewall is a firmware or software that is an essential part of a
computer network’s security system. In simple terms, it acts as an
intermediary or wall of separation between the insecure internet and secure
internal network which may be a computer, company network, or home
network. Separating the internet from your internal network tr
3 min read

What is a Proxy Firewall?

Prerequisite : Introduction of Firewall Introduction :A firewall proxy provides
security by controlling the information going in and out of the network.
Firewall proxy servers filter, cache, log, and control requests coming from a
client to keep the networ