A firewall sits between a computer (or local network) and another network (such as the Internet), controlling the incoming and outgoing network traffic. Without a firewall, anything goes. With a firewall, the firewall’s rules determine which traffic is allowed through and which isn’t.
Why Firewalls For Computers
The original release of Windows XP didn’t contain a firewall. The combination of having services designed for local networks, no firewall, and computers connected directly to the Internet led to many Windows XP computers becoming infected within minutes of being connected directly to the Internet.
The Windows Firewall was introduced in Windows XP Service Pack 2, and it finally enabled a firewall by default in Windows. Those network services were isolated from the Internet. Rather than accepting all incoming connections, a firewalled system drops all incoming connections unless it’s specifically configured to allow these incoming connections.
This prevents people on the Internet from connecting to local network services on your computer. It also controls access to network services from other computers on your local network. That’s why you’re asked what type of network it is when you connect to one in Windows. If you connect to a Home network, the firewall will allow access to these services. If you connect to a Public network, the firewall will deny access
Even if a network service itself is configured not to allow connections from the Internet, it’s possible that the service itself has a security flaw and a specially crafted request could allow an attacker to run arbitrary code on your computer. A firewall prevents this by getting in the way, preventing incoming connections from even reaching these potentially vulnerable services.
Firewall Functions
A firewall could have a variety of rules that allow and deny certain types of traffic. For example, it could only allow connections to a server from a specific IP address, dropping all connection requests from elsewhere for security.
Firewalls can be anything from a piece of software running on your laptop (like the firewall included with Windows) to dedicated hardware in a corporate network. Such corporate firewalls could analyze outgoing traffic to ensure no malware was communicating through the network, monitor employee’s network use, and filter traffic — for example, a firewall could be configured to only allow web browsing traffic through the firewall, blocking access to other types of applications.
0 comments:
Post a Comment