Firewall

A firewall enforces an access-control policy at a network boundary by inspecting packets and either allowing, denying, or logging them according to rules that typically reference source and destination IP addresses, ports, and protocols. Firewalls range from simple packet filters on routers to dedicated appliances and host-based software, and they are the foundational perimeter control in defence-in-depth architectures. Modern deployments combine firewalls with NAT, VPN termination, IDS/IPS, and application awareness. Effective use requires least-privilege rulebases, regular review, change management, logging, and integration with monitoring tools to detect policy drift, shadowed rules, and lateral movement.