Best Firewall Choices...

[Griz95]

For years I have been using a software Firewall by Zone Alarm. But after reading some here I am now under the impression that is a poor choice. Not just Zone Alarm but any software Firewall program. Can someone please explain to me why that is?

Thanks,

Griz95

 

[PandaBear]

Software firewall rely on the underlying layer of network protocol stacks, OS, and drivers being secure and reliable to operate correctly. If you are building on a driver or OS with loop holes, and the firewall can be bypassed with these loop holes, then it is pretty useless. Security is only as strong as its weakest link.

It also doesn't protect attack from inside the PC. A spyware, trojan, or virus could easily disable the firewall if you log on with admin rights.

It also uses more resource than a standalone firewall and cannot deal with Denial of Service attack as well as the external firewall.

 

[Griz95]

Okay...then what kind of firewall should I have?

 

[uc50ic4more]

Originally Posted By: Griz95
Okay...then what kind of firewall should I have?


The fastest, easiest, best way to get a hardware firewall is to purchase a (wireless) router. This'll afford you the extra benefit of being able to attach more computers, wired or wireless, to your new home "network"; all behind the router's firewall.

Having said that, if you do not have more computers in the house, I wouldn't bother purchasing hardware solely for it's firewall. I'd *never* feel safe and secure using Windows, no matter what I'm hiding behind, but if I had to use it, I'd use ZoneAlarm as my firewall.

 

[Griz95]

I am dumber than dirt when it comes to Firewalls...so do all wireless routers have a firewall built in them? Or just some of them? I don't have but one computer at home. So building a home network isn't necessary but if it is the only sensible Firewall I guess I will consider it.

 

[SrDriver]

I spend much of my computer time in Linux but too run Windows Vista in a dual boot mode on our desktop and two laptops.

For a software firewall I use the free version of Comodo which I have great results with.

Link To Comodo Web Site

They have both a free 32 and 64 bit version. When you install it you have the option of using both the anti-virus and firewall or whichever you would like. I use both and am well pleased - works for us.

I use Comodo in addition to the hardware firewall in my router.

Comodo works well without a router.

We are retired and use Comodo on our laptops and often use Wi-Fi when traveling @ motels - McDonald's, Coffee Shops, etc., and have not had any problems.

Hope this helps.

 

[ZZman]

A hardware firewall is best but there are many good software firewalls.

Comodo is good and I like and use PCTools firewall.

Test results:
http://www.matousec.com/projects/firewall-challenge/results.php

 

[PandaBear]

Originally Posted By: Griz95
Okay...then what kind of firewall should I have?


I've been running without firewall for a long time and was fine. My ISP blocked a few incoming ports that windows have vulnerability, port 25 I think. And that's it.

 

[simple_gifts]

Quote:

port 25


I suspect the ISP is more interested in blocking outgoing port 25 (mail)

Run with a linksys or similar router; they come preconfigured to block "everything" requested from the outside.

If running Windoze, having a hardware fireware doesn't eliminate the need for av software

 

[uc50ic4more]

Originally Posted By: PandaBear
Originally Posted By: Griz95
Okay...then what kind of firewall should I have?


I've been running without firewall for a long time and was fine. My ISP blocked a few incoming ports that windows have vulnerability, port 25 I think. And that's it.



Port 25 would be the outgoing SMTP port. A lot of ISP's do that, or at least prevent you from connecting to a SMTP server on port 25 other than theirs to lock you into using their provided email services, which in turn further lock you into continuing to use their ISP services.

It's almost always a good workaround to use port 587 if you need to connect to an (outgoing) email server other than your ISP's.

 

[PandaBear]

You're right, it is the medium firewall that I use.


The Medium Firewall blocks all uninitiated incoming traffic from your network and prevents any inbound TCP connections from being established on common ports. These ports include (135, 139, 389, 445 and 593). DSL Extreme recommends the Medium Firewall as it helps protect your computer from the most common Internet threats that are transferred through common ports.

 

[brianl703]

Originally Posted By: uc50ic4more
A lot of ISP's do that, or at least prevent you from connecting to a SMTP server on port 25 other than theirs to lock you into using their provided email services, which in turn further lock you into continuing to use their ISP services.


It's more to prevent spam. Spammers love to use open relays to send their junk, and blocking port 25 stops that.

 

[xlt4me]

I don't know if it's any good, but the giveaway of the day (3/19/09) is jFirewall Personal Pro

http://www.giveawayoftheday.com/

 

[OVERKILL]

Originally Posted By: PandaBear
Software firewall rely on the underlying layer of network protocol stacks, OS, and drivers being secure and reliable to operate correctly. If you are building on a driver or OS with loop holes, and the firewall can be bypassed with these loop holes, then it is pretty useless. Security is only as strong as its weakest link.

It also doesn't protect attack from inside the PC. A spyware, trojan, or virus could easily disable the firewall if you log on with admin rights.

It also uses more resource than a standalone firewall and cannot deal with Denial of Service attack as well as the external firewall.



Exactly why I recommend a solid Antivirus/Antispyware solution with a good hardware firewall, and for people to stay away from Internet "Security Suite" products, which oft cause more issues than they prevent in trying to "nanny" the computer and its user to death.