A firewall is a software or hardware security system that works as a filter between your computer/network and the internet. Firewalls can be programed to allow what you want to come into or out of your system. All other traffic is blocked.

Firewalls were first developed in the late 1980’s as the internet was growing in popularity and security became a concern.

The Evolution of Firewalls

fortigate-network-diagram

Access Control Lists (ACL) were typically installed on routers. ACL could efficiently scan through a vast amount of information but were limited because they only read the headers of packets (small chunks of data), which offered only basic information.

Proxy Firewalls act as an intermediary between your computer/network and the internet. Proxy firewalls imitate the intended recipient, retrieve, scan and approve data before delivering it to the destination computer. It is considered one of the safest firewalls because it is the only networked machine that interacts directly with the internet, but this comes at the expense of speed and functionality.

Stateful Inspection Firewalls have the ability to monitor and classify all incoming and outgoing traffic on the connection until the connection closes. For this reason it’s considered the next major evolutionary step for firewalls.

Unified Threat Management (UTM) Solutions consolidates stateful inspection firewalls, anti-virus software, anit-spam and an Intrusion Prevention System (IPS) in a single appliance. UTMs are able to enforce security procedures at the port, application and protocol level. They also incorporate packet-filtering, virtual private networks (VPN), network address translation (NAT) and URL blocking along with a number of other features built-in to increase security.

new generation fortinet firewallsNext Generation Firewalls (NGFW) have the same capabilities of UTMs but at a much greater capacity. They are built with advanced processing and more robust hardware. They are designed to efficiently process enormous amounts of data and keep up with the increasing flow of traffic. Most large networks use NGFW as they are proven to be the most efficient and effective against online attacks without cost to the speed of the connection.

It is important to note that even with an effective firewall in place a reliable anti-virus software is still necessary to protect each machine from removable media such as DVDs and memory sticks that may be infected with viruses. Also, your firewall may or may not completely protect against Trojan horses and other viruses sent through email.

 

buying a firewall

Metropolitan-Networks-London-Bromley

Meet our Engineers - Noufal Ibrahim

Noufal-IbrahimNoufal Ibrahim, since 2008, has been a Network and Security Engineer at Metropolitan Networks Ltd. with skills in core data network technologies that include routing, switching and network security. Noufal earned his Master’s Degree in Information Technology is also certified in Extreme ENA and ENS, Fortinet FCNSA and FCNSP, Cisco CCNA and CCDA. He has strong background in designing, implementing, maintaining and troubleshooting network infrastructure and taking care of its security.