diff --git a/README.md b/README.md
index 3d831d7..ac394fe 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,6 @@
 # Dev-Journal
 This repository is essentially a conversation with myself where I am listing the topics that I want to lean and understand. Over the period of time I want to write my notes in comments and increase the knowledge bank.
+
+## Available Topics
+
+- [Firewalls: Understanding Network Security](firewalls.md) - Comprehensive guide covering firewall uses, types (physical vs software), and best practices
diff --git a/firewalls.md b/firewalls.md
new file mode 100644
index 0000000..df12c9b
--- /dev/null
+++ b/firewalls.md
@@ -0,0 +1,139 @@
+# Firewalls: Understanding Network Security
+
+## What is the use of a firewall?
+
+A firewall is a network security device or software application that monitors and controls incoming and outgoing network traffic based on predetermined security rules. The primary uses of firewalls include:
+
+### 1. **Access Control**
+- Controls which users, devices, and applications can access network resources
+- Blocks unauthorized access attempts from external networks
+- Restricts internal users from accessing certain external websites or services
+
+### 2. **Traffic Monitoring and Filtering**
+- Inspects network packets for malicious content
+- Filters traffic based on protocols, ports, IP addresses, and domains
+- Blocks suspicious or unwanted network communications
+
+### 3. **Threat Prevention**
+- Protects against various cyber threats including:
+  - Malware and viruses
+  - Denial of Service (DoS) attacks
+  - Intrusion attempts
+  - Data exfiltration
+  - Unauthorized remote access
+
+### 4. **Network Segmentation**
+- Creates secure zones within networks
+- Isolates sensitive systems from general network traffic
+- Controls communication between different network segments
+
+### 5. **Compliance and Logging**
+- Helps organizations meet regulatory compliance requirements
+- Provides detailed logs of network activity for auditing
+- Enables forensic analysis of security incidents
+
+## Are there physical and software firewalls?
+
+Yes, firewalls come in two main categories: **hardware (physical) firewalls** and **software firewalls**.
+
+### Hardware/Physical Firewalls
+
+**Definition:** Dedicated physical devices that sit between networks to filter traffic.
+
+**Characteristics:**
+- Standalone network appliances
+- Purpose-built hardware optimized for network security
+- Typically installed at network perimeters (between internal network and internet)
+- High-performance processing capabilities
+- Redundancy and high availability features
+
+**Examples:**
+- Cisco ASA (Adaptive Security Appliance)
+- Fortinet FortiGate
+- Palo Alto Networks firewalls
+- SonicWall appliances
+- pfSense boxes
+
+**Advantages:**
+- High performance and throughput
+- Dedicated processing power
+- Centralized network protection
+- Professional-grade features
+- Better suited for enterprise environments
+
+**Use Cases:**
+- Enterprise networks
+- Data centers
+- Large office environments
+- ISP and service provider networks
+
+### Software Firewalls
+
+**Definition:** Software applications that run on general-purpose computers or servers to provide firewall functionality.
+
+**Types:**
+
+#### 1. **Host-based Software Firewalls**
+- Run on individual computers/devices
+- Protect the specific device they're installed on
+- Examples: Windows Defender Firewall, macOS built-in firewall, iptables on Linux
+
+#### 2. **Network-based Software Firewalls**
+- Run on servers or virtual machines
+- Protect entire network segments
+- Examples: pfSense, OPNsense, VyOS
+
+**Advantages:**
+- Cost-effective
+- Flexible and customizable
+- Easy to update and configure
+- Can run on existing hardware
+- Good for small networks or individual devices
+
+**Disadvantages:**
+- Limited by host system performance
+- May consume system resources
+- Less robust than dedicated hardware solutions
+
+## Hybrid Approaches
+
+### Virtual Firewalls
+- Software firewalls running on virtualized infrastructure
+- Combine benefits of software flexibility with enterprise features
+- Examples: VMware NSX, virtual instances of enterprise firewall software
+
+### Next-Generation Firewalls (NGFW)
+- Combine traditional firewall functionality with advanced features:
+  - Deep packet inspection
+  - Application awareness
+  - Intrusion prevention systems (IPS)
+  - Malware detection
+  - VPN capabilities
+
+## Choosing Between Physical and Software Firewalls
+
+### Consider Physical Firewalls When:
+- Managing large enterprise networks
+- Need high-performance throughput
+- Require advanced security features
+- Have dedicated IT security staff
+- Compliance requirements demand enterprise-grade solutions
+
+### Consider Software Firewalls When:
+- Working with small to medium networks
+- Budget constraints exist
+- Need flexibility and customization
+- Managing cloud or virtualized environments
+- Protecting individual devices or workstations
+
+## Best Practices
+
+1. **Defense in Depth:** Use multiple layers of firewalls (both hardware and software)
+2. **Regular Updates:** Keep firewall rules and software current
+3. **Monitoring:** Continuously monitor firewall logs and alerts
+4. **Testing:** Regularly test firewall configurations
+5. **Documentation:** Maintain clear documentation of firewall rules and policies
+
+## Conclusion
+
+Firewalls are essential components of network security, serving as the first line of defense against cyber threats. Both physical and software firewalls have their place in modern security architectures, and the choice between them depends on specific organizational needs, budget, and technical requirements. Many organizations implement a combination of both types to achieve comprehensive network protection.
\ No newline at end of file