firewall : Computer Hardware Buyers’ Glossary

The CurrCon Java Applet displays prices on this web page converted with today’s exchange rates into your local international currency, e.g. Euros, US dollars, Canadian dollars, British Pounds, Indian Rupees… CurrCon requires an up-to-date browser and Java version 1.6 or later, preferably 1.7.0_17. If you can’t see the prices in your local currency, Troubleshoot

firewall

A computer that examines traffic coming and going to the Internet, and dynamically filters out messages from certain IP (Internet Protocol) addresses. It can prevent people inside from hooking up to various outside computers and vice versa. The firewall rules allow you to specify which applications and services can send or receive packets via TCP (Transmission Control Protocol) or UDP (User Datagram Protocol) protocols. Usually all UDP protocols such as NNTP (Network News Transfer Protocol) are blocked, since you tend to burst security wide open if you open it up a little for UDP. Often a firewall is implemented with Linux. Using two separate operating systems tends to make life more difficult for the vandals. The most secure sort of firewall is a dedicted router box that is incapable of running any programs other than the firewall firmware. These are now under $150.00 USD . They are simple to install, but lack the flexibility of a Linux-based firewall. Hardware firewalls are good at keeping the outside world out. Software firewalls are good at preventing trojans running on your machine from accessing the net and divulging data.

There are four schemes for tunneling through firewalls NAT (Network Address Translation), SPI (Service Provider Interface), SOCKS (Sockets) and explicit proxy servers.

I am not too clear on this, but there appear to be several configuring protocols UPnP-NAT(PC (Personal Computer)), NAT-PMP(Mac) and SOHO. And many routers are not configurable.

If you have a server on your LAN (Local Area Network) that provides some protocol, you must configure your firewall to let traffic on the socket ports it use in and out. Further, you must arrange that incoming requests to open a socket are redirected to the appropriate computer on the LAN.

Typically you configure your firewall router using a browser to talk to the fixed IP of the router e.g. http://192.168.0.1/:80, and talk to GUI (Graphic User Interface) in the router’s firmware. You most commonly would specially configure your firewall if you were:

hosting a static HTTP (Hypertext Transfer Protocol) server
hosting Java servlets or other framework
Using BitTorrent
Hosting an RMI (Remote Method Invocation) server
Exposing a raw JDBC (Java Data Base Connectivity) SQL (Standard Query Language) server to the web (usually considered too dangerous)

	available on the web at:	http://mindprod.com/bgloss/firewall.html
	optional Replicator mirror of mindprod.com on local hard disk J:	J:\mindprod\bgloss\firewall.html
	Please email your feedback for publication, letters to the editor, errors, omissions, typos, formatting errors, ambiguities, unclear wording, broken/redirected link reports, suggestions to improve this page or comments to Roedy Green : . If you want your message, your name or email kept confidential, not considered for public posting, please explicitly specify that. Unless you state otherwise, I will treat your message as a letter to the editor that I may or may not publish in the feedback section. After that, it will be too late to retract it. If you disagree with something I said, especially when sending an ad-hominem attack, a rant composed mainly of obscenities or a death threat, please quote the offending passage and cite the web page where you found it, tell me why you think it is wrong, and, if possible, provide some supporting evidence. I can’t very well fix erroneous or ambiguous text if I can’t find it.
no blog for this page	Canadian Mind Products IP:[65.110.21.43] Your face IP:[54.242.188.217]
Feedback	You are visitor number 11.