SecurityA+

Firewall Basics for CompTIA A+ 220-1101

Firewalls are the primary network security control tested in CompTIA A+ 220-1101. Technicians must understand the difference between hardware and software firewalls, how to configure Windows Defender Firewall, and common firewall-related troubleshooting scenarios. Incorrectly configured firewalls are a common cause of connectivity failures — blocking legitimate traffic while trying to block threats.

6 min

2 sections · 7 exam key points

1 practice questions

Firewall Types and Function

What a firewall does: filters network traffic based on rules — allows or blocks packets based on source/destination IP, port, protocol, and direction (inbound/outbound). Creates a boundary between trusted and untrusted networks. At minimum, blocks unsolicited inbound connections from the internet.

Hardware firewall: a dedicated network device (or feature on a router) that protects all devices on a network. Home routers include a basic NAT firewall — blocks all unsolicited inbound connections from the internet by default. Enterprise firewalls (Cisco ASA, Palo Alto, Fortinet) provide advanced features: stateful inspection, application filtering, IPS, VPN.

Software firewall: installed on an individual computer — protects that device regardless of network. Windows Defender Firewall: built into all modern Windows versions. Protects against attacks originating from the local network or internet. Can be configured per-application and per-network-profile.

Stateful vs stateless: stateful firewall tracks connection state — knows if inbound traffic is a response to an outbound request (allows it) or an unsolicited inbound attempt (blocks it). More intelligent and the standard for modern firewalls. Stateless: evaluates each packet independently based on rules only — older, simpler ACL-based approach.

Windows Defender Firewall Configuration

Accessing Windows Defender Firewall: Control Panel → Windows Defender Firewall, or Settings → Privacy & Security → Windows Security → Firewall & network protection. Three profiles: Domain (connected to domain), Private (home/trusted networks), Public (coffee shops, airports — strictest rules).

Allow an app through firewall: Windows Defender Firewall → Allow an app or feature through Windows Defender Firewall → Change settings → Find the app or click Allow another app → browse to executable. Can specify Domain, Private, or Public profiles separately. Applications often prompt automatically when they first attempt to use the network.

Advanced settings: Windows Defender Firewall with Advanced Security (wf.msc) — create custom inbound and outbound rules by port, protocol, program, service. Example: allow port 3389 TCP inbound for Remote Desktop. Rules can specify remote IP addresses to limit access further.

Troubleshooting firewall issues: if an application works on one PC but not another — check firewall rules on the failing PC. Temporarily disable Windows Defender Firewall to test if it's causing the issue (never leave disabled in production — re-enable immediately after testing). Check event logs (Windows Defender Firewall drops are logged in Event Viewer → Windows Logs → Security).

Key exam facts — A+

Hardware firewall: protects entire network; software firewall: protects individual device
Windows Firewall profiles: Domain, Private, Public — Public has strictest settings
Stateful firewall: tracks connection state — allows return traffic automatically
Allow app through firewall: Control Panel → Windows Defender Firewall → Allow an app
wf.msc: Windows Defender Firewall with Advanced Security — custom port/protocol rules
Disable firewall temporarily to test if it's causing connectivity issue (re-enable immediately)
Home router: NAT firewall blocks all unsolicited inbound by default

Common exam traps

Disabling the Windows Firewall improves network performance

Windows Firewall processing overhead on modern hardware is negligible — it does not meaningfully impact network speed. Disabling it removes a critical security layer, leaving the PC exposed to network-based attacks. Performance complaints attributed to firewall are almost always caused by other factors (antivirus scanning, application issues, network problems) that should be diagnosed separately

Practice questions — Firewall Basics

These questions are representative of what you will see on A+ exams. The correct answer and explanation are shown immediately below each question.

Q1.After enabling Remote Desktop on a Windows PC, a remote user still cannot connect. The PC can be pinged and other network resources work. What is the most likely cause?

A.The network cable is faulty

B.Windows Defender Firewall is blocking TCP port 3389 (RDP)

C.The PC's IP address is wrong

D.The router needs to be replaced

Explanation: The PC is reachable (ping works) and other network resources function, so physical and IP layers are working. Remote Desktop uses TCP port 3389 — Windows Defender Firewall must have an inbound rule allowing this port. Enabling Remote Desktop in Settings usually adds the firewall rule automatically, but on some configurations this fails. Check Windows Defender Firewall → Allow an app through Windows Defender Firewall and verify 'Remote Desktop' is checked for the appropriate profile (Private/Domain). Or add a custom inbound rule for TCP port 3389.

Frequently asked questions — Firewall Basics

What is the difference between a firewall and a router?

A router forwards packets between networks based on IP addresses — its primary job is routing. A firewall filters packets based on security rules — its primary job is access control. Modern home devices combine both: a router/firewall/NAT device where the router forwards between WAN and LAN, NAT translates private addresses, and the firewall blocks unsolicited inbound traffic. In enterprise environments, routers and firewalls are separate dedicated devices with distinct roles. A router without a firewall would forward all traffic indiscriminately, exposing the internal network to the internet.

Practice this topic

A+practice questions

Test yourself on Firewall Basics

JT Exams routes you to questions in your exact weak areas — automatically, after every session.

Free practice test Start 7-Day Free Trial

No credit card · Cancel anytime