What Does Filter Mean?

Filters are application programs used in a firewall for
examining packets on their arrival at the firewall. Filters help with firewall security in that they
route or reject the packets based on defined rules.


Techopedia Explains Filter

Filters can be configured as per user and can be used to perform specific sets of actions, including on packets of a particular protocol family. Filters make use of the source IP address of the packet, destination IP address, IP protocol ID, TCP/UDP port number, ICMP message type and fragmentation flags in most cases to decide the course of actions for the packets. In fact, the key parts of the packets are compared against the rules and database of trusted information, to evaluate the course of action. Those that pass the test are allowed to move, whereas those that fail are rejected and denied any further service. In order to protect against denial of service attacks and floods, filters can be used for limiting the traffic rate of packets destined for the routing engine. On the basis of source, protocol and application, filters can restrict traffic for the routing engine. Filters can also be configured to address special circumstances such as ones associated with fragmented packets.

There are many advantages associated with filters. Filters enable the control mechanism for the packets in transition, provide a mechanism of protection for the router from heavy traffic and external incidents.


Related Terms

Latest Cybersecurity Terms

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…