I have to admit I am a bit confused here. I have been using Comodo 3 with Vista Home Premium. The last Comodo update seemed to leave my PC a little unstable so I decided to just go back to the Vista firewall. Definitely more stable and responsive now with the Vista FW. Is this secure enough or do I need something else? I am behind a router at home but my laptop does sometimes wind up on other wireless networks.

I am also using DefenseWall and alternate between NOD32 and Avira Premium.

You're fine with Vista's firewall.

The people at comodo would tell you no, the windows firewall is not enough. I was just over at their forum reading through a similar thread. You should check it out as it has some useful information.

Actually I never understood how the Vista firewall worked. It created rules by its own without ever asking me about anything.

There is a way though to fully configure it, but I don't think it is worth it when you can do the job much easier and faster with a firewall like Comodo or some other.

-{ Quote: "Actually I never understood how the Vista firewall worked. It created rules by its own without ever asking me about anything." }-

That can't be, unless someone went into your account and created their own rules?? AFAIK, Vista fw blocks incoming by default and allows outgoing by default, except for some service restrictions where certain services are bound to pre-defined ports, enforced by the built-in policy.

-{ Quote: "There is a way though to fully configure it, but I don't think it is worth it when you can do the job much easier and faster with a firewall like Comodo or some other." }-

It's no doubt faster to use a 3rd party fw for configuring custom rules, but Vista's fw will not have a negative impact on performance, nor will it conflict with other applications in a given environment.

Vista firewall is fine. If you're worried about lack of outbound control, just run Vista Firewall Control (http://www.sphinx-soft.com/Vista/index.html), it's free, light, and works well.

-{ Quote: "Vista firewall is fine. If you're worried about lack of outbound control, just run Vista Firewall Control (http://www.sphinx-soft.com/Vista/index.html), it's free, light, and works well." }-

Endorse that, besure you run Limited User full or at least in quiet mode (use freebie TweakUAC), but never off.

It seems to me that inbound protection against different attack vectors has not been fully proven on any firewall as far as my endeavors have went anyway. I feel like Vista's firewall is good, but it will also be the biggest target for hackers and malware writers as most people will not pay for something that is included in the OS. So far Zone alarm has given me the best "sense" of security on Vista. YMMV. :thumb:

If vista has a 1 way firewall, I would use something else for a 2-way, if it is 2-way, I would take some more confidence, but still use something else.
I have the tiniest feeling hackers would target windows firewall...

I was going to try Vista Firewall Control but I am unable to install. I am installing from an admin account. Any ideas?

-{ Quote: "I was going to try Vista Firewall Control but I am unable to install. I am install from an admin account. Any ideas?" }-
I would suggest trying it again in safemode
CG

Not sure what the problem is, I've installed it several times without issue (with both NOD32 and Avira). You did do a complete uninstall of Comodo (maybe check if others have had any difficulties uninstalling Comodo) and don't have any other firewalls running (besides Vista's firewall)?

I think something else is interfering (perhaps other security software).

One other option is to right-click the installer's executable and select "run as administrator" (I've never needed to do this but each system is different).

You're fine with the Vista firewall as long as you have a good antivirus software.

-{ Quote: "You're fine with the Vista firewall as long as you have a good antivirus software." }-

Will an antivirus stop a hacker? Will any firewall stop a hacker for that matter? :lurking:

-{ Quote: "Will an antivirus stop a hacker? Will any firewall stop a hacker for that matter? :lurking:" }-
An AV/AS will stop trojans and backdoors, (well, the ones it knows and some by heuristics) so in some sense, yes.

-{ Quote: "I would suggest trying it again in safemode
CG" }-

-{ Quote: "Not sure what the problem is, I've installed it several times without issue (with both NOD32 and Avira). You did do a complete uninstall of Comodo (maybe check if others have had any difficulties uninstalling Comodo) and don't have any other firewalls running (besides Vista's firewall)?

I think something else is interfering (perhaps other security software).

One other option is to right-click the installer's executable and select "run as administrator" (I've never needed to do this but each system is different).CG" }-

I must have had a corrupt download. Re-downloaded and it installed fine. Thanks

-{ Quote: "An AV/AS will stop trojans and backdoors, (well, the ones it knows and some by heuristics) so in some sense, yes." }-

Agreed "some sense"... I am just paranoid at times is all!!:doubt:

you are never enough even if you have 4 or 5 firewall, because if a excellent hacker want's to hack your PC he will do it even with firewall.
What you mean is am i enough protected against other things with the firewall? !

-{ Quote: "you are never enough even if you have 4 or 5 firewall, because if a excellent hacker want's to hack your PC he will do it even with firewall.
What you mean is am i enough protected against other things with the firewall? !" }-

So then other than outbound control, Vista's firewall is good enough... Can't keep hackers out anyways.:thumb:

The main function of a firewall is proactive security against known and unknown vulnerabilities in system services which happen to listen for incoming connections (NetBIOS, RPC, etc)
The second function of a firewall is to enforce a strict network access policy. I.e. your mail client should only connect to your mail servers over mail protocols (SMTP/SMTPs, POP3/POP3s, IMAP/IMAPs)

I have been using Vista Firewall Control (Free) for just a few hours but it doesn't get much simpler than this. No glitches so far and my laptop continues to be more stable (and faster) without Comodo v3.

Are there any significant advantages to using the paid version of Vista Firewall Control?

-{ Quote: "I have been using Vista Firewall Control (Free) for just a few hours but it doesn't get much simpler than this. No glitches so far and my laptop continues to be more stable (and faster) without Comodo v3.

Are there any significant advantages to using the paid version of Vista Firewall Control?" }-

Not sure, maybe I should try this as they sent me a free full version license for posting about their product over at slickdeals.net. Does anyone know how setting up the Vista firewall with Vista Firewall Control paid version compares with a firewall such as Comodo or Online Armor as far as detecting leaks go?

Vista FireWall Control and Vista LUA together withstand most leaktests except four, there was a test placed on a vista64 box on wilders

Paid gives you 'zone management' allowing access of programs in different zones (same as IE7 offers, only application based in stead of webpage based).

When CFP/D+ is to difficult I should stay with the free version.

-{ Quote: "you are never enough even if you have 4 or 5 firewall, because if a excellent hacker want's to hack your PC he will do it even with firewall.
What you mean is am i enough protected against other things with the firewall? !" }-
However, it is better having one then not, since it will offer better protection then nothing.
I was hacked once, and I noticed it WHEN he was hacking me, so I took the plug out, thats the best protection when your being hacked! ;D

By design any program that is given administrative priviledges (usually via the UAC prompt during installation) may make new rules for the vista firewall. However, any program given administrative privileges could install a driver that bypasses nearly any third party firewall.

Outbound protection is for privacy, not malware detection. The whole leak test thing is one big diversion and a waste of time.

The Vista firewall can be set up to provide outbound filtering, but it is a task for experts because it blocks silently.

-{ Quote: "By design any program that is given administrative priviledges (usually via the UAC prompt during installation) may make new rules for the vista firewall. However, any program given administrative privileges could install a driver that bypasses nearly any third party firewall.

Outbound protection is for privacy, not malware detection. The whole leak test thing is one big diversion and a waste of time." }-

I've read this too. I know the POC has been demonstrated, but how true is it in the wild that malware can bypass the outbound control of the firewall? I expect there is a lot of malicious code out there that doesn't know how to do this and would be caught when attempting an outbound connection. My point is I think it' still useful even though it is necessary to take other precautions as well.

-{ Quote: "
Outbound protection is for privacy, not malware detection. The whole leak test thing is one big diversion and a waste of time.

The Vista firewall can be set up to provide outbound filtering, but it is a task for experts because it blocks silently." }-

I am MORE concerned with privacy as I have not had any malware on my machine and I have a pretty good set-up as far as I am concerned (high speed modem-firewall, NOD32, SAS Pro, Vista w/ IE7 in protected mode and FF and a few others things).

I just hate it when I have a program I use that makes outbound connections without my permission. MS is notorious about it and so is Dell. I want a program I can use to stop unauthorized outbound attempts. Malware is not the problem- it's all these "legit" programs that phone home.

One question I have is, how are intrusion attempts handled with Vista's firewall? Example: Zone alarm will periodically pop up saying an intrusion attempt was blocked! ???

-{ Quote: "One question I have is, how are intrusion attempts handled with Vista's firewall? Example: Zone alarm will periodically pop up saying an intrusion attempt was blocked! ???" }-

Can't help there. I have never seen any firewall pop up with an intrusion alert since I have been behind a router (at least 2 years)! Before that I used to get them all the time with Zone Alarm and others. The router obviously takes care of the blocking.

-{ Quote: "Can't help there. I have never seen any firewall pop up with an intrusion alert since I have been behind a router (at least 2 years)! Before that I used to get them all the time with Zone Alarm and others. The router obviously takes care of the blocking." }-

At home I am behind a wireless router and it is behind an alpha shield---no pop ups either. On the road I have a EVDO modem and will occasionally get a few. Just wondering if VF blocks these silently?

Are the ports steath with Vista Firewall or with VF + Vista Firewall Control (free)?

-{ Quote: "Are the ports steath with Vista Firewall or with VF + Vista Firewall Control (free)?" }-

I have ran GRC shields up against Vista firewall and it was a totally stealthed! Never tried the Firewall control app. 8)

-{ Quote: "...Is this secure enough or do I need something else?
" }-

As a 'good' firewall, yes! As others already pointed out you need to set outbound protection but it takes a long time.

-{ Quote: "
I am behind a router at home..." }-

This is also helpful as an addition to your Vista firewall. The router will protect your network provided it has NAT/SPI firewall enabled.

-{ Quote: "
.. my laptop does sometimes wind up on other wireless networks..I am also using DefenseWall and alternate between NOD32 and Avira Premium." }-

As long as the wireless networks your laptop often 'see' are protected and do not allow you to use them. Otherwise you have decent AVs. ;D