Welcome to the Holiday Firewall Simulator!
This interactive simulator helps you understand how firewalls protect different network zones. Click on any connection between zones to configure firewall rules.
The network consists of:
- Internet: The external world
- DMZ (Demilitarized Zone): Public-facing servers like web and email
- Internal Network: Protected corporate network
- Workstations: Employee computers
- Cloud Services: External cloud resources
Firewall Configuration Goals
Configure your firewall to meet these security requirements:
Internet to DMZ: Allow only HTTP and HTTPS traffic
Incomplete
DMZ to Internal: Allow HTTP, HTTPS, and SSH traffic
Incomplete
Internal to DMZ: Allow HTTP, HTTPS, and SSH traffic
Incomplete
Internal to Cloud: Allow HTTP, HTTPS, SSH, and SMTP traffic
Incomplete
Internal to Workstations: Allow all traffic types
Incomplete
Security Best Practice: Block direct Internet to Internal access
Incomplete
Click on zones or connections to configure firewall rules. All goals must be completed to secure the network properly.
Internet
DMZ
Workstations
Cloud Services
Internal Network
Firewall Legend
HTTP (Port 80)
HTTPS (Port 443)
SSH (Port 22)
SMB (Port 445)
SMTP (Port 25)
DNS (Port 53)