Router with integrated firewall is the best way to go, having a software firewall sitting on a PC directly connected to the net is never the best idea.Originally posted by Agent
ZA also likes to stop quite a few LAN games randomly, even when you "unload" it as its still hiddenly loaded.
Just got my router todo it now, with custom rules for what i need
... unless it's running LinuxOriginally posted by BlackSheep
Router with integrated firewall is the best way to go, having a software firewall sitting on a PC directly connected to the net is never the best idea.
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
yeah, got Norton firewall 2003, best firewall i have used so far
Mind u, i've only used Zonealarm
even then you are best off running NAT on the *nix box (or smoothwall box ideally) and not working on the gateway, especially if you are running a web server - bad idea to have it sitting on the gateway, better to have it hidden inside the firewall and route to it.Originally posted by DaBeeeenster
... unless it's running Linux
Just got my new Linksys router from ebuyer and apparently it has built in NAT firewall and ZoneAlarm pro (not full versions) with it.
If the box is patched to the latest version of IPTables, why is it going to be any less secure than a router? What do you think routers have inside them?Originally posted by BlackSheep
even then you are best off running NAT on the *nix box (or smoothwall box ideally) and not working on the gateway, especially if you are running a web server - bad idea to have it sitting on the gateway, better to have it hidden inside the firewall and route to it.
In fact, there's an argument that they are more secure since the software in them is regularly patched and updated; the same cannot be said for a lot of routers...
http://www.cert.org/advisories/CA-2003-15.html
That's A LOT of cisco routers affected by a security flaw where a few specially malformed IP packets can completely knock over the entire router...
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
I'd expect the internal *nix box to have a properly configured IPtables firewall as well of course, should have said - but NAT just adds that further layer of security by masking the Private IP - and of course you security is only as good as your last patchOriginally posted by DaBeeeenster
If the box is patched to the latest version of IPTables, why is it going to be any less secure than a router? What do you think routers have inside them?
In fact, there's an argument that they are more secure since the software in them is regularly patched and updated; the same cannot be said for a lot of routers...
http://www.cert.org/advisories/CA-2003-15.html
That's A LOT of cisco routers affected by a security flaw where a few specially malformed IP packets can completely knock over the entire router...
IPTables performs NAT tho...
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
Tiny Personal Firewall V2.0 old but still faithful.
i got sygate personal fire wall, its great for a free product
Which does it nicelyOriginally posted by DaBeeeenster
IPTables performs NAT tho...
Becides, everyone knows that having a unix machine on your network makes you more sexy, so go for it, and pull the ladys.
Originally Posted by Saracen
And that's my reasoning too
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
Used ZA a long time ago. It was working fine until it strangely stopped and blocked my web server for an unknown reason. Everything I tried wasn't good enough to make it work.... so a full unistall along with a registry cleaning got rid of it. I used Norton Perso Firewall, but finally decided to live dangerously w/o a firewall
xfactor
I'm a big fan of BlackICE firewall. Used to use zonealarm but still got hacked through it, switched to BlackICE and haven't had a problem since.
Main Rig: LANPARTY UT nF4 Ultra-D | AMD Opteron 165@2.65Ghz | 2GB TwinMoss DDR PC3200 | GeForce 8800GT 512MB | 2*500GB Seagate 7200.10 | Antec P182 case
Shuttle Rig: Shuttle SN41G2B | Sempron 2200+ | 1GB NANYA DDR PC3200 | ATi Radeon 9600 128MB | 2*320GB Seagate 7200.8
HTPC: Abit Abit AN-M2HD | Athlon X2 BE-2400 | 2GB Corsair DDR2 PC2-5300 | 500GB Seagate 7200.11 | Terratec Cinergy 2400i DT | Antec Fusion Black HTPC Case
Furton.NET Coming soon!
smoothwall on an old machine has to be the best, if you have the floorspace!
For joy, apparently, it was all Franny could do to hold the phone, even with both hands.
do what i do
Use Zone Alarm and a Hardware firewall
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
LinkBack URL
About LinkBacks
Reply With Quote