Ports and Firewalls

Ports and Firewalls

Every computer which accesses the internet or is connected to a network uses ports to communicate. Ports are almost like individual conversations going on over the same telephone line but which each port talking about a different thing. For example, every time you access a website using http, the chances are you’ll be using port 80. For other protocols such as ftp (file transfer) different ports are used, in this case port 21. Email, secure connections, streaming etc. all use different ports which helps control the flow of data and filter desired information from undesired.

Now for many people, you never see or need to know that your computer is doing this automatically. However in some special cases, a program wants to use an unusual port number and if you have a firewall installed, it may be set to block the port, preventing the program from communicating. You may get pop-up windows telling you about the request but you may not so if a program tries to communicate across a network or the internet and fails, it could be worth trying it without your firewall turned on to see if that is the problem. If it is, you can set up rules to allow that program access.

There are two key types of firewall: hardware and software based. Hardware firewalls are often built into routers or similar (you can often change the port you access your router admin on and use the address http://routerip:portnumber) and are generally more of an outer barrier preventing any obvious attacks on a system. These can sometimes cause problems but it is more often than not the software firewall will be blocking a connection and will need to be configured. Software firewalls are generally more configurable and allow you to choose which programs can access the internet or network and individual ports can often be opened (you will be able to find out which ports certain programs need by using a search engine) or closed down as necessary. Generally software firewalls have more flexibility than hardware based and have the advantage that they go with you wherever your computer is.

The need for a firewall more than anything is to only allow desired programs and information to be sent from your computer. Hackers and malicious code can exploit security holes in a firewall allowing data to be sent. Port scans often detect weaknesses and firewalls help to identify and protect against these. Hardware firewalls are particularly effective for this. Software firewalls will often alert you if a program wants to access the internet so if it is one you don’t recognise, don’t allow it. You can the investigate it further and if it turns out to be malicious, antivirus or anti-spyware software will help to remove it.

As a firewall is there for security, use it wisely and only have the ports open you need. If you’re not sure what a program is, deny it access and investigate. You can always change it later!



  1. Glad I could be some help. It is often a lot easier for many people to use products once they understand what the product is designed to do! Obviously every firewall differs in interface and configuration but the job they do is generally the same and as such, it is just finding the right menu etc. in the program.

    Software firewalls can be configured to remember settings for certain programs which prevents them asking every time. For example if you had the firewall configured to ask everytime you opened your internet browser it would get highly annoying but you can set it to remember this and as such, you will never have to manuall allow it again. Most firewalls have this feature and some now automatically configure themselves for common programs.

  2. Uncle Pat

    Great article… most informative. I’m running “The Shield” anti-virus and firewall protection and find their tech support lacking in knowledge of the product. I learned more from this article than hours on the phone with their techs. Thank you…

  3. Mr.Hogg

    Software firewalls are really a pain if you sit for a long duration on your computer. Half the time is wasted in allowing or denying acess to the sites.
    This was long back and there might have been some improvements in software firewalls.

Leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.