Hi, I was just wondering what people would say is the best Firewall for mainly outbound monitoring and protection.

I would like to try something that is very easy to configure but something that gives good protection against outbound connections mostly. As my router takes care of the inbound.

I am currently using Windows Firewall as an interm while waiting to try OA's firewall on their v2 when it is release. But i was wanting to give something else a try in the meantime to see how i like it.

I do not like Zone Alarm and looknstop so i was hoping there maybe something better to try. Hopefully free too.

But like i say outbound monitoring and protection is my main concen. Alongside it being easy to configure

Thanks
Anthony

You could take a look at Appdefend

Thanks but according to its website. It says it is an application intrusion protection system. Like i said i was wanting an outbound protection system. To control exactly what has access to the internet and not. (im worried about spyware and trojans).

Thanks
Anthony

-{ Quote: "Thanks but according to its website. It says it is an application intrusion protection system. Like i said i was wanting an outbound protection system. To control exactly what has access to the internet and not. (im worried about spyware and trojans)." }-It does give you network access control too, so that's outbound protection. :)

Edit: Here are all the current features of AppDefend:

http://i6.photobucket.com/albums/y239/eldarwyn/Wilders/appdefend_features.jpg

idk if its th best, but kerio is the only other free and current firewall with outbound protection.

for paid, u can try outpost which is very powerful in its outbound protection.

for another non-firewall solution, u can try either safe n sec or prevx. both offer network access control for apps.

Jetico Personal Firewall (http://www.jetico.com/index.htm#/jpfirewall.htm)

Very good for outbound protection.

Anthony1uk,
A good anti-virus and seperate trojan killer app. would also protect you. Do not skimp on those for a firewall and think that will keep you safe. Kill the crap before it attempts to make an exit.

O.K. now assuming you are ::) :dry: >:( at me due to my above remark (meaning you know this already and I am offering you no help).

I would recommend what I have found to be one of the best out of the many major firewalls I have used. OutPost. :thumb: Second choice: McAfee :thumb:

Hello,
You could try Sygate or Jetico.
Mrk

Zone Alarm Pro seems to be a good choice.I have this in my computer for years. I have also learned not to download the latest update immediately upon release. I always let others do the testing.

-{ Quote: "Hi, I was just wondering what people would say is the best Firewall for mainly outbound monitoring and protection

Thanks
Anthony" }-


Any particular color you prefer?

Filseclab (http://www.filseclab.com/eng/) works for me.

Another vote for Outpost.

I used to think that Kerio2.1.5 and SygatePro were the best until i tried Jetico (free) some time ago.
Even without particular configs it simply is unbeatable for outbound protection, confirming Tests recently published.


to ned kelly- why the ironic remark about the colour? I see nothing wrong in priority of outbound over inbound for people who run a Router......

I think it's Outpost Pro. It gives lots of details that can overwhelmed you...;D

-{ Quote: "I think it's Outpost Pro. It gives lots of details that can overwhelmed you...;D" }-

I use Outpost + appdefend

but for really tight outbound I'd go for Jetica or Tiny.

I'm not surprised at all that Outpost was mentioned.....but I am a little surprised that Look 'n' Stop has not been! Any reason for this? Am I missing something in regards to LNS's outbound protection?

-{ Quote: "I'm not surprised at all that Outpost was mentioned.....but I am a little surprised that Look 'n' Stop has not been! Any reason for this? Am I missing something in regards to LNS's outbound protection?" }-
Same here.

Outpost Pro :thumb:

-{ Quote: "I'm not surprised at all that Outpost was mentioned.....but I am a little surprised that Look 'n' Stop has not been! Any reason for this? Am I missing something in regards to LNS's outbound protection?" }-
well the OP said he doesnt like LnS. but it is a good firewall nonetheless.

-{ Quote: "Hi, I was just wondering what people would say is the best Firewall for mainly outbound monitoring and protection.

Thanks
Anthony" }-

From the above replies it is clear that posing such a question on this forum is like asking nascar fans who is the best driver. Or, asking a bunch of hunters which is the best rifle caliber.

I'm running an old, "insecure" version of Kerio V4 which recently stopped a trojan from installing after getting by NOD32. I didn't even know firewalls were supposed to detect trojans trying the install.

I continue to run this "crash-prone" version (V4.0.8 ) of KPF because it has never crashed my computer, whereas the newer, "more reliable" versions all make my machine crash.

Use whatever works for you. Sometimes you just have to experiment.

Hi dough! The trojan must have caught by the appliaction behaviour blocking part of Kerio that is basically not a part of firewall but rather an add on. But as I know it will warn u only about an application execution, start up etc and will not tell whether it is malware or not. So how u came to know it is atrojan?

Exist only four real firewall on the market!

1. Tiny Pro

2. Jetico

3. Look'n'Stop

4. Outpost Pro ?

1. Tiny Pro is absolutely first (monster), block all outbound, and ask all. Have best
process guard engine (only Tiny block "breakout-wp" and "breakout-en". For non experienced user is best choice, to configure
you need only accept application what you know with Trusted application Rule, and application what you not know with Default protection, suspicious file with block Rule, all other Tiny Pro make alone. Protect all, System, Registry, File, resource acceptable, around 20M. Don't slowdown connection. Very,very good! Best choice but Pay.
2. Jetico, o Jetico is my Love.
Example for all other firewall how this must be. I think next release is better
than Tiny. But how is it, is Soft4Ever. Request little experience for conf.
Resurce min. from 1.6M to 6.0M. Don't slowdown connection. Best choice FREE! My choice!
Software is like sex: it's better when it's free.
Linus Torvalds
3. Look'n'Stop is very good.
Good support from developer, now is beta, next release is again Soft4Ever.
Minimum config, and minimum resource 1,2M to 4,0M. Don't slowdown connection.
Very good, Pay.
4. Outpost Pro, very good, but I think that a developer is in cul de sac
with firewall engine, every two month annoying new release, Jetico and LnS is two years old and is two first! You no need firewall with AntiSpyware-AntiVirus, this is
only marketing trick, nice for ear and nothing more. Am end you have poor firewall and bad AntiSpyware - AntiVirus!
Firewall must be firewall like three above, and AntiVirus must be AntiVirus,
like a KAV6! Resource, too much, slowdown connection. Good support.
Very goot but developed in wrong direction? Pay.

5. All other!

-{ Quote: "So how u came to know it is a trojan?" }-

Kerio popped up a message that told me the name of the file trying to start. It was an older trojan and not very harmful. I still don't know how it got in though. It shook my confidence in NOD.

This is the first bug I've had since Blaster got by Norton about five years ago.

So as I said it was by the appliaction behaviour blocking part of Kerio that is basically not a part of firewall but rather an add on feature.

I would add Netveda firewall to the list. Its light on resources and very configurable. Gives you stealthy quality and its free. If your curious heres where to check it out : http://www.netveda.com/consumer/safetynet.htm. I have been a Look N Stop user for several years but the silence on the latest Beta has been getting rather troubling. It seems like it should of come out of Beta a while ago...::) ;)

-{ Quote: "
2. Jetico, o Jetico is my Love.
Example for all other firewall how this must be. I think next release is better
than Tiny. But how is it, is Soft4Ever. Request little experience for conf.
Resurce min. from 1.6M to 6.0M. Don't slowdown connection. Best choice FREE! My choice!
Software is like sex: it's better when it's free.
Linus Torvalds
" }-

excuse my ignorance but what Linus Torvalds got to do with this?

-{ Quote: "
3. Look'n'Stop is very good.
Good support from developer, now is beta, next release is again Soft4Ever." }-

haha... very funny... but true...

-{ Quote: "excuse my ignorance but what Linus Torvalds got to do with this?" }-
"Software is like sex: it's better when it's free." is a quote of Linus Torvalds, thats all.

-{ Quote: ""Software is like sex: it's better when it's free." is a quote of Linus Torvalds, thats all." }-

thanks... thats what im thinking, but too lazy to search google... hehe...

-{ Quote: "So as I said it was by the appliaction behaviour blocking part of Kerio that is basically not a part of firewall but rather an add on feature." }-


But if its job is to control network traffic, and a hidden malware could shut it down, thus preventing it from doing its job, then could you not say that behavior blocking is a legitimate function for a firewall?


-HandsOff

Comodo Personal Firewall.

-{ Quote: "But if its job is to control network traffic, and a hidden malware could shut it down, thus preventing it from doing its job, then could you not say that behavior blocking is a legitimate function for a firewall?


-HandsOff" }-

I have no objection for any extra features of a firewall( except if they are crap). I like this function and esp the OS firewall function in ZAP.

Sunbelt Kerio seems to be working like a champ, including with respect to outbound traffic. What still annoys me, however is the user interface. While it does seem to perform behavior blocking, Nips, and Hips, there is a grand total of 1 entry between the three of them

This makes me a little bit nervous about will I be able to rescind decisions. On the other hand, under Network Security one does seem to have the effect of the decision, if not an actual log of the event. I think all the rules that effect connectivity are easily changed...so as far as monitoring out bound:

1-you get the popup when event takes place and can block
2-a rule is created that is easy to change

3-logging seems to be an issue, but i guess it is not as vital as control.

I'm starting to like it for control of outbound connection. Hopefully, others can confirm this.


-HandsOff

Kerio 2.1.5 provides excellent control over both inbound and outbound traffic. On more than one occasion, I installed it on a PC is was servicing and it immediately alerted me to an undetected trojan, trying to connect out. This version of Kerio doesn't have any form of application control, except for verifying the signature of the application requesting internet access. It caught and blocked the trojans connection attempts.
While many of the newer firewall suites come with some form of application/hook control, I prefer to use a separate program for this purpose, specifically System Safety Monitor. (http://syssafety.com/) Both are very light and easy on resources. I've used Kerio 2.1.5 for several years now and it has never crashed or otherwise failed.
-{ Quote: "I would like to try something that is very easy to configure but something that gives good protection against outbound connections mostly." }-
While Kerio 2.1.5 does give good protection in both directions, it is rule based, meaning that the user has to configure it properly. The user does need to have a basic knowlege of internet protocols, the IP address system, ports, etc. When used with separate HIPS software like SSM, they will outperform most security suites, use less hard drive space and system resources, and costs less than most security suites that are nowhere near as strong.
Consider trying them only if you're willing to learn how and why they work. Like Kerio 2.1.5, SSM is also rule based and requires that the user understands what they're doing.
Rick