An internal firewall can apply stricter rules than a perimeter router.

  • Rules can control services entering and exiting the network, for example, allowing all outbound services and only allowing established connections and incoming email.
  • It may be set up to control services only to specific hosts or servers, or allow email services only to the email server.
  • An internal firewall can hide internal IP address information.