What Is a Firewall?
a Firewall — a security system that permits or blocks traffic according to rules — the enforcement point between networks of different trust levels.
How it works
Classic firewalls filter on addresses, ports and protocols; stateful firewalls also track connections so replies to permitted outbound sessions return automatically. Next-generation firewalls add application awareness, user identity and intrusion prevention. Rules are evaluated top-down with a default deny at the edge of good designs.
Why it matters
Firewalls anchor both CCNA security fundamentals and CyberOps work — analysts read firewall logs daily, and understanding statefulness explains why "it works one way but not the other". ACLs on routers are the CCNA-level cousin.
Frequently asked questions
What does a firewall actually block?
Whatever its rules say — typically inbound traffic that wasn't requested, risky ports and known-bad sources, while permitting approved flows.
What does stateful mean?
The firewall remembers connections it allowed out, so matching return traffic is permitted automatically without loose inbound rules.
What is a next-generation firewall?
One that inspects applications and users, not just ports — often bundling IPS, URL filtering and malware inspection.
Related articles
Want hands-on training?
Learn this on real Cisco lab devices with placement support at Attila Technologies, Ahmedabad.