Firewall

What It Means

A firewall is a network security device or software component that inspects traffic entering or leaving a network and enforces rules about what is allowed. Every home router contains a stateful firewall that implements Network Address Translation (NAT), which by default blocks all unsolicited inbound connections from the internet while allowing outbound connections and their replies. This is the primary reason home devices are not immediately compromised the moment they are plugged in despite their often-weak security, the router firewall acts as a first line of defense. Enterprise firewalls from vendors like Palo Alto Networks, Fortinet, Cisco, and Check Point add deep packet inspection, intrusion prevention, application awareness, and user-based policy enforcement. Consumer routers increasingly include optional security features beyond basic NAT: built-in VPN servers (for remote access to home networks), malware blocking based on DNS or URL blocklists, intrusion detection, and parental controls. Premium routers from Asus, Netgear Armor (Bitdefender-powered), Eero Plus, and Firewalla include subscription security services that monitor for malware communication, known vulnerability exploitation, and IoT device misbehavior. pfSense and OPNsense are popular open-source firewall operating systems for technical users. Firewalls do not directly affect internet speed, though deep packet inspection and intrusion prevention features can add 1 to 5 ms of latency on low-powered consumer hardware. For most home users, the default router firewall combined with keeping router firmware updated provides adequate baseline protection. The Broadband Grade does not measure firewall quality but recommends keeping firmware updated.

Frequently Asked Questions