Manage Learn to apply best practices and optimize your operations.

Network security best practices

Learn why firewalls are necessary for any developed network security strategy in this network security Ask the Expert Q&A.

When operating a network, is it safe to forego firewall software on the second machine and rely on the Internet-facing machine firewall?
While you might be safe using a single firewall, this is generally frowned upon within the security community because it fails to implement the "defense-in-depth" strategy. By eliminating your software firewall, the Internet-facing firewall is the only device protecting your network. If something happens to that firewall (a malfunction, misconfiguration, compromise, etc.), you don't have any fallback.

Given the fact that most operating systems come with free integrated firewalls, there's no reason to disable your...

host-based firewalls. I'd strongly encourage you to leave them turned on at all times.


  • Learn how to design and implement a firewall solution.
  • Learn why firewalls are essential to any network security strategy.
  • This was last published in July 2006

    Dig Deeper on Network device security: Appliances, firewalls and switches

    Have a question for an expert?

    Please add a title for your question

    Get answers from a TechTarget expert on whatever's puzzling you.

    You will be able to add details on the next page.

    Start the conversation

    Send me notifications when other members comment.

    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

    Please create a username to comment.