Which term describes devices that enforce administrative security policies by filtering traffic based on rules?

Firewalls enforce administrative security policies by filtering traffic based on rules. They sit between networks and examine each packet or connection, applying a rule set defined by administrators to permit or deny communication. This rule-based filtering is precisely how they implement policy: you specify what traffic is allowed (by source and destination, port, protocol, and sometimes application characteristics), and the firewall enforces those decisions, helping to segment networks and enforce least-privilege access. Some firewalls also track connection state so only legitimate replies are allowed, and next-generation firewalls can inspect applications for more granular control. Digital signatures relate to verifying who data comes from and ensuring it hasn’t been altered, not to filtering traffic. A data processor is a general term for a system that processes data, not a security device. Governance covers the policies and processes that guide security, rather than a device that filters traffic.