Skip to main content Skip to footer 
EN
Firewall
A firewall is a security system that controls network traffic between devices, networks, servers and external resources. Its main task is to allow safe connections and block suspicious or prohibited connections. A firewall can be a separate hardware device, a software solution on a server or a built-in function of a cloud platform.
A firewall works as a filter between a trusted and an untrusted environment. For example, it can protect an office network from unwanted connections from the internet, restrict access to a server, separate internal network segments or control traffic between cloud services. In corporate infrastructure, a firewall is considered one of the basic elements of information security.
The main benefit of a firewall is that it helps reduce the attack surface. If a server does not need access through a certain port or protocol, the firewall can close this path. If users are not allowed to connect to specific external resources, a firewall rule can restrict such connections.
How a Firewall Works
A firewall analyzes network traffic and makes decisions based on predefined rules. These rules may take into account IP addresses, ports, protocols, connection direction, session state, applications, users and other parameters. If traffic matches an allowed rule, it passes through. If not, it is blocked or sent for additional inspection.
Simple firewalls work at the packet and connection level. More advanced solutions can analyze applications, traffic content, user behavior and signs of attacks. Such systems are often called next-generation firewalls, or NGFW. They may combine the functions of a traditional firewall, IPS, application control, VPN and web traffic filtering.
For example, a firewall can allow employees to access a corporate portal but block attempts to connect to a server administration panel from an unknown network. It can also allow incoming HTTPS traffic to a website while closing unnecessary ports that should not be accessible from the internet.
Types of Firewalls
A firewall can be used at different levels of infrastructure. In small networks, it is often built into a router or operating system. In corporate environments, specialized devices, virtual firewalls and cloud filtering tools are used.
Common types of firewalls include:
- network firewall for protecting the network perimeter;
- host-based firewall on a separate server or workstation;
- web application firewall, or WAF, for protecting web applications;
- next-generation firewall with advanced traffic analysis;
- cloud firewall for access control in cloud infrastructure;
- virtual firewall for virtualized environments and data centers.
The choice of type depends on the task. A WAF is needed to protect a website from application-level attacks. A network firewall is used to control access between an office network and the internet. A host-based firewall is additionally used to protect a separate server.
Where a Firewall Is Used
A firewall is used in almost all types of IT infrastructure: office networks, data centers, clouds, hosting, corporate branches, SaaS platforms and remote access systems. It helps separate trust zones and control which connections are allowed between them.
In a data center, a firewall can protect server segments, databases, control panels, storage systems and administrative interfaces. In the cloud, it is used to restrict access to virtual machines, containers, databases and internal services. In an office network, a firewall controls incoming and outgoing traffic, VPN connections and employee access to external resources.
For businesses, a firewall is especially important when infrastructure is accessible from the internet. Without filtering, open services can become targets for scanning, brute-force attacks, vulnerability exploitation and unauthorized access.
What to Consider When Configuring a Firewall
A firewall is effective only when configured correctly. Rules that are too permissive leave unnecessary paths for attacks, while rules that are too strict can disrupt services. Therefore, before configuration, it is important to understand which applications are used, which ports are really needed, who should have access and which network segments need to be isolated.
A good practice is to allow only necessary traffic and block everything else by default. It is also important to review rules regularly. Over time, temporary access, test services and outdated exceptions appear in infrastructure. If they are not removed, the firewall gradually loses effectiveness.
For critical systems, it is important to keep event logs, configure alerts, use redundancy and document changes. A firewall should be part of the overall security architecture, not the only protection tool.
FAQ
A firewall is a network filter that controls which connections are allowed and which should be blocked. It helps protect computers, servers and networks from unwanted or dangerous traffic.
A firewall controls network connections and access between systems. Antivirus software looks for malicious files and suspicious behavior on a device. These tools solve different tasks and are often used together.
WAF, or Web Application Firewall, is a type of firewall for protecting web applications. It analyzes HTTP/HTTPS requests and helps block attacks on websites, APIs, login forms, control panels and other web services.
Yes, a firewall is also needed in the cloud. It helps restrict access to virtual machines, databases, containers, internal services and administrative interfaces. Security groups, network ACLs or cloud firewalls are usually used for this.
No, a firewall reduces risks but does not provide complete protection against all threats. It should be combined with updates, access control, monitoring, backups, endpoint protection and incident response.