Todd H. <comphelp@toddh.net> wrote:
> om.newsgroup@gmail.com writes:
> > It was my understanding that a router gave a hardware firewall which
> > was a million times better than a software one and gave you more
> > protection.
> From external, network-based attacks this is true.

No.

> A software firewall can add something your network level firewall
> cannot. It can interactively prompt you when new unknown programs on
> your PC try to make outbound connections.

This is counterproductive.

> This can be helpful in tipping you off to drive-by installs of
> software that shouldn't be on your machine, or alert you to software
> that is phoning home that shouldn't be.

Only seldomly this will be helpful.

> > In that case, why have a hardware firewall?
> Because if your software firewall goes down (which it can), then
> you're unprotected.

No. The OP asked comparing with his filtering router.

> Hardware devices are relatively non-complex and
> are easier to secure, unlike a multipurpose computer.

This is just nonsense.

Yours,
VB.
--
MAC-Filtering bringt so viel Schutz vor "Hackern" wie Zeitungspapier vor
einer Atombome. (MAC filtering is protecting against "hackers" like newsprint
is protecting against a nuclear bomb)
- Christian Forler in de.comp.security.misc