Firewalls For Dummies Cheat Sheet - dummies
Cheat Sheet

Firewalls For Dummies Cheat Sheet

From Firewalls For Dummies, 2nd Edition

By Brian Komar, Ronald Beekelaar, Joern Wettern

A firewall constructs a barrier between your computer and the Internet in an effort to safeguard your computer and the information in it. When you start looking to purchase the software or hardware that can guard your system, a checklist of questions to find answers to is a useful tool. Because a firewall protects from potential dangers on the Internet, you need to know a little about the ports, protocols, and IP addresses used to connect to it. And, you need to stay on top of current threats, which a variety of Web sites can help with.

Firewall Shopping Checklist

When you’re shopping for a firewall to protect your computer and the information on it, you want the firewall hardware and/or software to be effective and appropriate for your needs and system. The following list poses questions to address before you purchase:

Is the firewall ICSA-certified? Does it support NAT?
Is the firewall easy to configure? Does it support a DMZ?
Are there remote management options? Does it support VPN?
Does it match the current expertise of your firewall
Does it support new protocols and plug-ins?
Which OS platform and what hardware does it require? Does it detect common attacks and intrusion attempts?
Does it require client software? Does it have adequate logging options?
What are the licensing options and costs? Are real-time monitoring options available?
Does it support application-level rules?

Firewall-Friendly Web Sites

Installing a firewall is a security measure, but it’s just the first step. To maintain your security and your firewall, you have to stay vigilant. The links in the following list are to Web sites that can help you stay on top of Internet security issues:

Ports, Protocols, and IP Address Ranges for Firewalls

If you’re building or installing a firewall to protect your computer and your data, basic information about Internet configurations can come in very handy. The following tables give you the facts on IP protocols, ports, and address ranges.

Common IP Protocols
Protocol Name
1 ICMP (ping)
17 UDP
50 ESP (IPSec)
51 AH (IPSec)
Common TCP and UDP Ports
Protocol Port Name
TCP 20 FTP data
TCP 21 FTP control
TCP 23 Telnet
TCP 25 SMTP (E-mail)
TCP/UDP 53 DNS query
UDP 67/68 DHCP (Dynamic IP address configuration)
TCP 80 HTTP (Web)
TCP 110 POP3 (E-mail)
TCP 119 NNTP (Newsgroups)
TCP 143 IMAP4 (E-mail)
TCP 389 LDAP (Directory service)
UDP 1701 L2TP (Virtual Private Networks)
TCP 1723 PPTP (Virtual Private Networks)
Private and Automatic IP Address Ranges
A to (
B to (
C to (
APIPA to (