Go Back   Wireless and Wifi Forums > General > Members Lounge
Register FAQ Forum Rules Members List Calendar Search Today's Posts Advertise Mark Forums Read

 
Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 09-26-2004, 08:45 PM
Junior Member
 
Join Date: Dec 1969
Posts: 8
Default Router firewall vs Software firewall

With the router firewall enabled, do I still need a software firewall ie Zonealarm and if so, any suggestions on improvements to Zonealarm?
Running a wireless LAN by the way.

Thanks.
Reply With Quote
  #2 (permalink)  
Old 09-26-2004, 08:58 PM
Junior Member
 
Join Date: Dec 1969
Posts: 2
Default

Windows Firewalls provide next to no security anyway read the frontpage article, besides most routers setup correctly will provide sufficient security, the only way to keep your windows machine completely secure is to turn it off/ unplug it from the network forever.
Reply With Quote
  #3 (permalink)  
Old 09-27-2004, 09:04 AM
Senior Member
 
Join Date: Dec 1969
Posts: 122
Default

The inbuilt Windows XP firewall is very good and I have heard good things about zonealarm.
Reply With Quote
  #4 (permalink)  
Old 09-27-2004, 10:39 PM
Senior Member
 
Join Date: Dec 1969
Location: Auckland / The Mount, New Zealand
Posts: 107
Send a message via MSN to Skink
Default

according to the chat on PDC++ last night, there are some severe holes, including those covered by the cover-story, in the SP2 firewall.. Zonealarm is impervious to worm attacks, afaik.
__________________
NODE ID: 194
NODE NAME: Efenthar

Kung-Foo Webdesign
<a href='http://www.kung-foo.co.nz' target='_blank'>http://www.kung-foo.co.nz</a>
Reply With Quote
  #5 (permalink)  
Old 09-28-2004, 02:13 AM
Senior Member
 
Join Date: Dec 1969
Location: Petone, Wellington
Posts: 244
Default

Quote:
Some firewalls are software firewalls. They reside on the machine that is connected to the Internet, and act as a filter for information going in and out. The major drawback to a software firewall is that they have already connected to your box. It is like the difference between locking your front door, and locking your jewellery box. Both are meant to keep your jewels
safe, but one is obviously more effective.
A hardware firewall (like a machine running SmoothWall) is between your network and the Internet. It forces anyone who wants to break in to have to go through an extra machine. The more work you make them do, the less likely they are going to want to spend the time on you. After all, the person down the street isn't protected at all. They are an easier target.
Quote:
"The main difference is a hardware firewall is a separate hardware unit that blocks attempts before they enter the system/network and a software firewall sits in the back of a system and reacts when an attempt has been made. A software firewall is no match for a hardware appliance's performance."
Plus software firewalls are messy and waste resources.. get an external box doing dedicated security tasks IMO
Reply With Quote
  #6 (permalink)  
Old 09-28-2004, 09:41 AM
Senior Member
 
Join Date: Dec 1969
Posts: 122
Default

An external box is a pain in the arse to config and monitor. I can just tick a couple of boxes on my machine and voila! I don't bother to though because I do NAT on my DSL router.

An external box also won't pickup backdoors and spyware but niether will ICF. Zonealarm is good at that.
Reply With Quote
  #7 (permalink)  
Old 09-29-2004, 02:57 AM
Senior Member
 
Join Date: Dec 1969
Location: Petone, Wellington
Posts: 244
Default

a good external box should be designed to be set and forget, anyone with a linux/bsd based firewall appliance can attest to that Mine takes 15-20 minutes to install and configure, and I only have to remote into it on occasion to check up on it. The average amount of time spent remotely accessing is about 3 minutes a fortnight, just to check the logs for attack patterns and make sure it's all updated..

As for backdoors - all non-requested incoming traffic is blocked, very simple
spyware - Again, properly configured an external box will deal to most spyware, and spybot can deal with the rest

And by the way, NAT isnt an entirely effective layer of security, so dont depend on it
Reply With Quote
  #8 (permalink)  
Old 09-30-2004, 05:13 AM
Senior Member
 
Join Date: Dec 1969
Posts: 122
Default

I'm not an expert on spyware but if I programed some I'd initiate a connection from the machine I'm spying on. I'd also make the request look like a perfectly normal web request (or whatever) so that any firewall in the way would not be able to tell.

A fair amount of time has past since Telecom rolled out DSL in NZ and NAT has proven itself to be a very effect layer of security.
Reply With Quote
  #9 (permalink)  
Old 09-30-2004, 11:55 PM
Senior Member
 
Join Date: Dec 1969
Location: Petone, Wellington
Posts: 244
Default

Broken record...

properly configured an external box will deal to most spyware, and spybot can deal with the rest
Reply With Quote
  #10 (permalink)  
Old 10-04-2004, 05:04 AM
Member
 
Join Date: Dec 1969
Posts: 42
Default

Ideally, for a Windows computer you would want an external firewall (using the term losely here, a decent Linux or *BSD box will do) and a personal firewall. Stay away from the latest version (v5) of ZoneAlarm, causes no end of problems (does things it shouldn't, even when disabled) from what I've heard. Personally, I would stay away from ZoneAlarm all together and get something better like Kerio but it's up to you.

SP2 firewall is okay but there are a few issues and more importantly in my opinion since it's Microsoft and the Windows default, regardless of whether it has more security flaws or not, they are more likely to be found and more likely to be exploited when found.

As I said, ideally for a Windows comp, you would want an external firewall and a personal firewall. However, if you have to choose between them, I would choose a personal firewall. But make sure you keep it up to date!
Reply With Quote
  #11 (permalink)  
Old 10-04-2004, 08:15 AM
Junior Member
 
Join Date: Dec 1969
Location: Auckland
Posts: 16
Default

I find it depends who is using the computer. For less geeky family and friends I never rely on just NAT or a gateway / firewall / proxy. It always pays to install say the free copy of Zone Alarm on their PC's. Sure it chews a bit of memory but it's an excellent tool and very easy for joe six pack to use. The amount of headaches is saves is well worth it.

On my own machine I just rely on NAT and smoothwall (linux firewall / gateway) and use my jedi like geek sense.

:P
Reply With Quote
  #12 (permalink)  
Old 10-04-2004, 09:55 AM
Senior Member
 
Join Date: Dec 1969
Posts: 122
Default

What are the issues with Windows ICF?
Reply With Quote
  #13 (permalink)  
Old 10-26-2004, 01:53 AM
Member
 
Join Date: Dec 1969
Posts: 42
Send a message via MSN to Warwaste
Default

IF you know/like command line I would use a Linux box for the security of the system.

ELSE IF you have a family environment I would stick with Windows and its GUI.

As for the firewall software to uses, I wouldnt just stick with the SP2 udate to windows firewall. I still cant block the ICMP (ping) from my computer using SP2 but with Norton I can atleast limit which computers I will allow an echo to.

SP2 firewall does have some advantages in that the user can now allow or stop certain replys on the network. It also has a log that can be enabled to monitor network traffic on different ports(not that I use it).

As for public knowledge and teaching of the product, microsofts help files are not to detail by what I have found(unless someone has found good documentation on how to use it?).

Any way thats just my opinion.
Reply With Quote
Reply


« General questions on the state of wireless in NZ. | Dimensions of Wired Country Antenna »
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
checking my router Amanda alt.internet.wireless 28 08-08-2006 03:31 PM
Why do I need a software firewall? om.newsgroup@gmail.com comp.security.misc 60 10-15-2005 01:10 AM
best practices to secure home's network strutsng@gmail.com alt.internet.wireless 31 10-14-2005 10:22 AM
Need recommendations: router and software firewall. om.newsgroup@gmail.com comp.security.misc 8 10-03-2005 07:48 AM


All times are GMT. The time now is 12:27 PM.



Powered by vBulletin® Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.6.0 PL2

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45