What's a firewall, and how do I set one up?

Search First! Then browse: Categories | Full Archive | By Date | Newsletter

Home » Networking » Firewalls
Home » Video Tips

Summary: Firewalls are an important part of keeping your computer safe when connected to the internet. We'll look at what a firewall is and your choices.

Viruses like the recent Sasser worm can be prevented simply by using a good firewall. What's a firewall? Well, in your car it's the "wall" of metal behind the dashboard between you and the engine that prevents engine fires from roasting you and your passengers.

A firewall for your computer is much the same - it's to keep you from getting burned.

•

A firewall's purpose is very simple: to block or filter certain types of network traffic from reaching your computer. What do I mean by "certain types"? There are things you want to get like the pages of web sites you visit or the software you might download. And then there are other things you might not want like people accessing your computer remotely or viruses and worms infecting your machine.

A firewall knows the difference.

Firewalls are also usually configurable; they can allow you to say "this kind of connection from the outside is OK". A good example is Remote Desktop. A firewall will by default prevent it from working. But you can also configure the firewall to allow that type of connection to come through. That way you would be able to access your computer from another, across the room, or across the internet. But other types of traffic like viruses are still blocked.

Some firewalls will also monitor outgoing traffic for suspicious behavior. One characteristic of many viruses is that once you're infected they attempt to establish connections to other computer to spread. Many software firewalls will detect and either warn you or simply prevent it.

And that leads to a very important distinction in firewalls - there are two types: hardware and software.

A hardware firewall is just that - a box that sits between you and the internet that performs the filtering function. Traffic that is filtered out never reaches your computer. Broadband routers perform the function of a firewall quite nicely and are typically what I recommend. The downside for a hardware devices is that most will not filter outgoing traffic.

A software firewall is a program that runs on your computer, and at the very lowest level monitors your network traffic. The firewall prevents filtered traffic from getting through to the operating system. All network traffic reaches your computer but the firewall prevents your system from actually doing anything with it.

The good news is that if you're running Windows XP, you already have a firewall built-in. It's a simple matter of turning it on to get the protection you're looking for.

Video Tip: Enabling the Internet Firewall. A short walk-through of the steps you can take to enable your Windows XP firewall and help prevent viruses like Sasser from spreading.

Related Links:

Ask Leo! - What are "LSASS.EXE" and "Sasser" and how do I know if I'm infected? What do I do if I am?
Ask Leo! - What's the difference between a Hub, a Switch and a Router?
Ask Leo! - How do I keep my computer safe on the internet?
How Stuff Works - How firewalls work. A more detailed look at the workings of firewalls.
Lockergnome - Video Tip of the Week: Enabling the Internet Firewall
Webopedia - firewall - a definition.

Article C1941 - May 14, 2004

Recent Comments

22 Comments

I have a wireless windows xp computer and just recently my computer will not hook up with the interent. I have tried everything. Could the firewall be preventing it from accessing it?

Posted by: betty at January 4, 2008 5:36 AM

hi leo,i have a problem with my windows live messenger.when i try to sign in windows live messenger box came out and say that "windows live messenger has made several failed attempts to sign you in.your firewall may be blocking windows live messenger from connecting to the service.please review your firewall settings.see the retailer's instructions for more information".can u help me to solve my problem??thank you

Posted by: sisca at July 19, 2008 7:23 AM

Leo,

Hi, I am looking to set up a firewall in my home that will allow me to set up a seperate profile for each person in the household. I have five children ranging from 18 to 4 and would like to set up distinct whitelists for each person. I have been able to find a firewall that supports setting up a profile by category to block but have been unable to find one that gives me the flexability to block by category for some uses and by whitelist for others. Please keep in mind that multiple people use the same computer.

Thanks for your help

Posted by: Avie at August 18, 2008 6:03 PM

my msn cant connect as i get the massage that the firewall has blocked possibly but i dont think that it is the case can u help me please

Posted by: kokrui at September 14, 2008 6:53 AM

same problem with msn and blocking !!

Posted by: dr.mohi at October 7, 2008 11:04 AM

Hi Leo I just have a question...when I try to go to the Internet...it takes a lot of time to open just yahoo,per say, when I try to diagnose the problem it says that my firewall is blocking the Internet...but I don't know how to change it...I have reseted the modem, but is useless...When turn my computer I can go the Internet and go to wherever I want,but after a couple of minutes it blocks again...and it takes a lot of time to open a page...Any suggestions of how can I can fix this problem...

Posted by: Osito at December 12, 2008 1:53 PM

if i tries to sign in to my Windows Live Messenger, it displays : Several Attempts to sign in, you firewall may be blocking you to connect to the service.
Leo Please help me.
Thank you

Posted by: Rezwan at December 14, 2008 12:55 PM

My computer wont let me download anything.Is my firewall doing this?If not what can I do so I can download things again?

Nowhere near enough detail. I need specific error messages that you see and the specific steps you're taking to have any hope of helping.

- Leo
21-Feb-2009

Posted by: jade at February 21, 2009 7:16 AM

i'm having the same problem like others. pop out showing "windows live messenger has made several failed attempts to sign you in.your firewall may be blocking windows live messenger from connecting to the service.please review your firewall settings.see the retailer's instructions for more information" when signing in. pls help..

Posted by: Augustine at April 18, 2009 10:53 PM

Windows Live Messenger Has made several attempts to sign you in. Your firewall may be blocking Messenger from connecting it to it's service. See the retailers instructions for more info"

I get this error while signing to WLM... please help me....

Posted by: ANoop at May 3, 2009 10:33 PM

See all 22 comments...

Post a comment on "What's a firewall, and how do I set one up?":

Name: (Required) Email Address: (Required) (Email Address will not be published.) Remember Me? YesNo	By popular demand... my tip jar Buy Leo a Latte!
Comments: (you may use HTML tags for style)	Subscribe to the RSS Feed specifically for comments on this article.

Before commenting, please...

Read the article at the top of this page. If your comment shows you didn't, it'll be deleted and ignored.
Comment only on this article. Use the Google search box at the top of the page if you have a question about something else.
Don't include personal information in the comment. No email addresses. No phone numbers. No physical addresses.
Don't ask me to recover lost passwords or hacked accounts. I can't, and those comments will be deleted.

I can't respond to every comment. And I can't vouch for the accuracy of others who do.
Read Why didn't you answer my question? for hints on getting an answer.
By posting a comment you agree to the Terms of Service. Don't agree? Don't post.
Read the article at the top of this page. If your comment shows you didn't, it'll be deleted and ignored. Yes, I'm saying this twice; you'd be amazed.

Please wait. Your comment is being processed ...