Free firewall, what to choose?

Online Armor - good free firewall + good free HIPS

Pick the firewall that matches these criteria:
Pick one that is compatible with your OS. Some old ones won't work on Vista or Win7. Some new ones won't work on 2K or 9X.
Pick the firewall that matches your skill. A pure rule based firewall won't help someone with no knowlegde of internet protocol or the IP system.
Choose a firewall to fill the role you have for it. Do you want just an internet firewall or a whole package. Many security apps have kernel level components. They can do strange things when there's more than one involved. Avoid duplicating coverage. That's where conflicts come from.
Don't worry about test results, especially those d@mned leaktests. Their results are very dependent on the configuration of your security apps and are designed to favor suites or combined packages. How well any individual security apps fares against them doesn't matter. What counts is how well your whole package works as a unit. If you must test, test the whole system, and don't assume a failed test is a weak application. Most of the time, a failed test means that further configuration is needed.

Make a backup of your system before trying out firewalls. This way you always start with a clean system with no unremoved leftovers interfering with the next trial.

As for a firewall preference, I like Kerio 2 supplemented with SSM, but I'm partial to rule based apps and separate components. Not a setup for a novice or casual user. Don't make your decision based on poll results or others preferences. More than anything else, your choice must fit you.

As WIPFW is not listed, I have chosen Windows inbuilt firewall.


- Stem

Windows Vista fw.

Windows!

Missing quite a few open source *nix hardware firewalls in the options...Endian, IPCop-Copfilter, Untangle, PFSense, etc.

I like Private Firewall.
But there are some very good choices on the list.
Everyone has their favorite.;)

No option for 'other'?

I know it's a heresy on this forum to suggest Sunbelt's version of the Kerio 2.1.5 firewall, but it's wonderful, even in the free version (plus SSM), once configured in a way similar to Kerio plus being able to use IP groups, the simple interface, fast user switching, good logs.

Outpost free is wonderful too, though the logs in the free version are lacking allowed connections, and sifting through the applications isn't as simple as in the Kerio-style firewall.

Here,maybe not that much. This thread,current during the time PCTools was on top,did not show a big switch to that application.



http://www.wilderssecurity.com/showthread.php?t=246797

I wonder is this is the Windows firewall in Vista/7,with outbound protection enabled,or the simple Xp inbound firewall.

From Vista on I would use the Windows one as a free one.

-{ Quote: "From Vista on I would use the Windows one as a free one." }-

I second that :)

ZoneAlarm Free :thumb:


The "original" and the best (for me atleast ;D )

Outpost Free and then if that does not tickle your
fancy....Online Armor Free :thumb:

My vote for Online Armor.
Outpost and Comodo are also very good.

Comodo, but Online Armor as second one.

PC Tools Firewall Plus or Windows ;D

Online Armor is excellent and includes a very good (and quiet) HIPS.

If you are running Vista, the Windows firewall should be fine.

windows firewall - simple , no disturbance:)
Outpost firewall free( if u want outbound protection)

windows firewall are you serious? it doesnt even have out protection only in protection

-{ Quote: "it doesnt even have out protection" }-

Yes it does.

Never been able to install Outpost Free on Vista Sp1
On win 7 - cannot be installed either.
Windows FW? You gotta be kidding me.

-{ Quote: "
Windows FW? You gotta be kidding me." }-

Ingenious input there batman.

unless you are a moderator - leave it to them, robin

-{ Quote: "windows firewall are you serious? it doesnt even have out protection only in protection" }-

See here (http://www.wilderssecurity.com/showthread.php?t=239750) for instructions concerning Vista and its outbound control.

-{ Quote: "unless you are a moderator - leave it to them, robin" }-

It's more about having a clue what you are talking about rather than being a moderator.

-{ Quote: "Never been able to install Outpost Free on Vista Sp1
On win 7 - cannot be installed either.
Windows FW? You gotta be kidding me." }-

Windows firewall is very safe.;)
Check with shields up

Windows Firewall for many reasons. Its a good inbound filter that doesn't use extra resources like 3rd party firewalls and its very hands free whereas I worry that 3rd party firewalls are too involved and you have to tinker with it too much with admin privileges. Too much trouble to go through for no security benefit, if you want outbound filtering Vista/7 have it. For me I think outbound filtering is more of a gimmick, its easy for malware to disguise itself during outside communication as scvchost.exe, or as Background Intelligent Transfer Service like this old trojan for example: http://www.computerworld.com/s/article/9019118/Hackers_hijack_Windows_Update_s_downloader?source=rss_topic85

I use Windows Firewall on my Win7 Ultimate x86 (+ the Router built-in firewall), but if I was going to install a freeware alternative, it would be PC Tools Firewall Plus.

Already used it in and it did a very good job, on XP Pro it also scores 100% in latest Matousec tests.

-{ Quote: "Yes it does." }-

Great answer :thumb: But outbound control is disabled by default - am I right? :doubt:

-{ Quote: "I use Windows Firewall on my Win7 Ultimate x86 (+ the Router built-in firewall), but if I was going to install a freeware alternative, it would be PC Tools Firewall Plus.

Already used it in and it did a very good job, on XP Pro it also scores 100% in latest Matousec tests." }-

in my opinion PC tools Firewall plus is not good as compared to Zone alarm ,outpost free ,online armor .
Windows firewall is better than Pctools.:isay:

-{ Quote: "in my opinion PC tools Firewall plus is not good as compared to Zone alarm ,outpost free ,online armor .
Windows firewall is better than Pctools.:isay:" }-

Why do you think so?

-{ Quote: "in my opinion PC tools Firewall plus is not good as compared to Zone alarm ,outpost free ,online armor .
Windows firewall is better than Pctools.:isay:" }-
I use Windows Firewall (+ Router built-in Firewall) because I really don't need the extra features that PC Tools Firewall Plus has on stock.

However, I disrespectfully disagree with your post. Matousec does a comprehensive review that subjects tested security products to many different tests covering many areas of Windows OS security.

In Matousec's latest tests, PC Tools Firewall Plus scored 100% as it passes in all tests, 100% of them. This freeware firewall is also very lightweight and unobtrusive, as it is built using the new Windows Filtering Platform (WFP) - therefore offering great and precise support to newest versions of protocols (IPv6) and Windows OSes, both 32-bit (x86) and 64-bit (x64) versions of: Vista, Server 2008, 7 and Server 2008 R2. They still support XP as well, but only the 32-bit (x86) version.

Your suggestions of firewalls don't have such good grades in Matousec's latest tests, therefore aren't as good as PC Tools Firewall Plus:
ZoneAlarm Pro - passes 72% of the tests
ZoneAlarm Free - passes 11% of the tests
Outpost Free - passes 93% of the tests
Online Armor Premium - passes 99% of the tests
Online Armor Free - passes 92% of the tests

-{ Quote: "

However, I disrespectfully disagree with your post. Matousec does a comprehensive review that subjects tested security products to many different tests covering many areas of Windows OS security.

In Matousec's latest tests, PC Tools Firewall Plus scored 100% as it passes in all tests, 100% of them." }-

Matousec is not a firewall testing site anymore. Matousec started in 2006 and was run mostly by university students to test traditional firewalls or "packet filters," but after two years it changed from “Firewall Challenges” into “Proactive Security Challenges”.
So it is not a firewall testing site now.
http://www.techsupportalert.com/content/matousec-personal-firewall-tests-analyzed.htm
http://smokeys.wordpress.com/2009/05/03/matousecs-new-moves-to-recapture-the-label-trustworthy/

Now about PC tools firewall plus.
If u want an HIPS then that is a good product. But as a firewall , The products i mentioned above are better than this.:isay:
https://grc.com/x/ne.dll?bh0bkyd2
go to that site and do a port scanning attack . It will fail.
I also used PC tools firewall when it became 2nd (99%) in matousec.
After using it i realised what a stupid review is matousec's:ouch:

Matousec's Proactive Security Challenge remains the most comprehensive review of security products that do some kind of "proactive" protection. Personal Firewalls are in this group of software.

Did you really see what it tests? Read:
http://www.matousec.com/projects/proactive-security-challenge/faq.php
http://www.matousec.com/projects/proactive-security-challenge/#methodology-rules

About GRC ShieldsUP, PC Tools Firewall Plus easily passes it with Stealth in everything when I used it. If it didn't pass this basic port scan test in your computer (even Windows Firewall passes it, it only tests the In-bound filter), it might be your Router's fault. Your Router may need some special configuration.

-{ Quote: "Matousec's Proactive Security Challenge remains the most comprehensive review of security products that do some kind of "proactive" protection. Personal Firewalls are in this group of software." }-

Look at the results , u can see Mamutu and threatfire. Will u use those as ur Firewall??::)
Also u can see many internet security suites with low scores. It is because they dont have HIPS.
Meaning of proactive:Acting in advance to deal with an expected difficulty.

So they must test Antivirus products, antimalware prooducts also.

-{ Quote: "About GRC ShieldsUP, PC Tools Firewall Plus easily passes it with Stealth in everything when I used it. If it didn't pass this basic port scan test in your computer (even Windows Firewall passes it, it only tests the In-bound filter), it might be your Router's fault. Your Router may need some special configuration." }-

I dont have a router. All pctools firewall plus versions ive used failed in Shields up. Dont know why:wacko:

-{ Quote: "Look at the results , u can see Mamutu and threatfire. Will u use those as ur Firewall??::)
Also u can see many internet security suites with low scores. It is because they dont have HIPS.
Meaning of proactive:Acting in advance to deal with an expected difficulty.

So they must test Antivirus products, antimalware prooducts also." }-
Mamutu and Threatfire are all down in the list, with 2% and 5% scores, respectively.
About your other confusion, I think you didn't read their FAQ. Look at the following excerpt:
-{ Quote: "
Question: What kind of products are suitable for Proactive Security Challenge testing and which are not?
Answer: We often receive requests to test security products that are not suitable for Proactive Security Challenge. It is important to understand what kind of products do we test. The primary requirements are that the product implements application-based security model and behavior blocking. This means that it allows its users to control selected actions of applications. Among behavior blocking capabilities, the product must be able to control applications' network access. Then we require the product's project to be alive. We are not interested in already dead projects without a future although exceptions may appear. Finally, we require the tested version of the product to be stable, publicly available in English and run on Windows OS that is currently supported by the challenge. Most of the products called an Internet security suite, a personal firewall, a HIPS, a behavior blocker do meet all these criteria and hence they are suitable for Proactive Security Challenge testing.
On the other hand, there are many products that are not suitable for our project. Security products that are built to protect only a single process are not suitable – various Internet browser security add-ons, sandboxes or virtualizations, for example. Also behavior blockers that focus on a single type of malware are not suitable – e.g. anti-keyloggers, malware removers. All pattern based systems that are not based on application behavior are not suitable – this includes all anti-virus and anti-malware solutions that are not delivered with application-based security modul.
The security software that is NOT suitable for Proactive Security Challenge testing just because it is not publicly available or stable can be tested in private (commercial) Proactive Security Challenge but without a chance to publish its results. Any other security software that is NOT suitable can be tested on commercial basis outside Proactive Security Challenge." }-

-{ Quote: "I dont have a router. All pctools firewall plus versions ive used failed in Shields up. Dont know why:wacko:" }-
Test the latest sixth version. When I used it, it passed in all Shield's UP tests.

this thread is about "Free firewall, what to choose?"
Not "free HIPS, behavior blockers ,what to choose?"

I dont want to argue with this :gack: . Your computer ,u can use any software.
Your choice.

I said my points , u said ur points. Thats all.
Now time here is 11.45 pm . Im going to have a nice sleep.
8)

-{ Quote: "this thread is about "Free firewall, what to choose?"
Not "free HIPS, behavior blockers ,what to choose?"

I dont want to argue with this :gack: . Your computer ,u can use any software.
Your choice.

I said my points , u said ur points. Thats all.
Now time here is 11.45 pm . Im going to have a nice sleep.
8)" }-
Yes I know. But even from a "free personal firewall restricted perspective", PC Tools Firewall Plus is probably the best.

As I said before, this freeware firewall is very lightweight and unobtrusive, as it is built using the new Windows Filtering Platform (WFP) - therefore offering great and precise support to newest versions of protocols (IPv6) and Windows OSes, both 32-bit (x86) and 64-bit (x64) versions of: Vista, Server 2008, 7 and Server 2008 R2. They still support XP as well, but only the 32-bit (x86) version.

Being the top performer of Matousec's tests only helps it to claim the "best free personal firewall" award even more. There is no reason to not accept this fact, the other free alternatives (including those suggested by you) simply don't catch up.

COMODO CIS IS NO1 IN THE WORLD , YOU CAN LOCATE SOME TESTS ABOUT IT , AND YOU WILL SEE ITS A LEADER FIREWALL ALWAYS :)

-{ Quote: "COMODO CIS IS NO1 IN THE WORLD , YOU CAN LOCATE SOME TESTS ABOUT IT , AND YOU WILL SEE ITS A LEADER FIREWALL ALWAYS :)" }-

sometimes it is true that i really wonder if people realize the difference between a good firewall and a good HIPS, i have yet to see anything proving to me CIS is a good firewall (its already been known for a while that its a pretty good HIPS)

-{ Quote: "sometimes it is true that i really wonder if people realize the difference between a good firewall and a good HIPS, i have yet to see anything proving to me CIS is a good firewall (its already been known for a while that its a pretty good HIPS)" }-

ok , lets make it simple , what is a firewall?! watch ports open / close and approve / reject access to them by software right?! welp this kinda job did fierwalls 7 years ago ... so how can we ask "which is the best firewall"??

this days , malware make you pc "open" ports to allow junk to enter your pc (like spam or trojan) so firewall DID get improved (yes all of them arround) and add HIPS to its protection , in this term CIS FROM COMODO take the lead always , and remain in the 3 best firewalls in the market (facts) and also FREE :D

cheers :)

-{ Quote: "ok , lets make it simple , what is a firewall?! watch ports open / close and approve / reject access to them by software right?! welp this kinda job did fierwalls 7 years ago ... so how can we ask "which is the best firewall"??

this days , malware make you pc "open" ports to allow junk to enter your pc (like spam or trojan) so firewall DID get improved (yes all of them arround) and add HIPS to its protection , in this term CIS FROM COMODO take the lead always , and remain in the 3 best firewalls in the market (facts) and also FREE :D

cheers :)" }-

not really... theyr are firewalls that are intended for that purpose even today, not 7 years ago (look n stop for one) and thats really what some people want, they want a firewall for the purpose of a firewall and not to just pass leak tests (which is all the tests u see like matousec that ur most likely basing ur judgment off of)

who knows maybe im old fashioned but i believe a firewall should do what its name suggests and a HIPS should be a HIPS, not some mixed concoction.

-{ Quote: "and not to just pass leak tests (which is all the tests u see like matousec that ur most likely basing ur judgment off of)" }-
Incorrect, please read all my posts in this thread and also:
http://www.matousec.com/projects/proactive-security-challenge/faq.php
http://www.matousec.com/projects/proactive-security-challenge/#methodology-rules

-{ Quote: "Incorrect, please read all my posts in this thread and also:
http://www.matousec.com/projects/proactive-security-challenge/faq.php
http://www.matousec.com/projects/proactive-security-challenge/#methodology-rules" }-

and as i said, almost nothing in there is testing the actual firewall...

-{ Quote: "and as i said, almost nothing in there is testing the actual firewall..." }-
Suggest tests and define the "actual firewall", please. If you refer to what is tested in GRC Shield's UP, for example.

-{ Quote: "define the "actual firewall", please. " }-
That will explain the working of a Firewall
http://computer.howstuffworks.com/firewall.htm

Also u must check the firewalls listed in Matousec test.
Many of them fails shields up testing.

-{ Quote: "That will explain the working of a Firewall
http://computer.howstuffworks.com/firewall.htm

Also u must check the firewalls listed in Matousec test.
Many of them fails shields up testing." }-
None of the leader ones, like the best of them, PC Tools Firewall Plus, fail ShieldsUP testing.

Concluding from the HowStuffWork's initial text, HIPS are functionality very related to Firewalls, if a Firewall job is really similar to a physical firewall that keeps a fire from spreading from one area to the next.

HIPS are not only related, but needed to accomplish such a task. In other words: Firewalls must have HIPS implementations to accomplish their tasks. If you think about it for a minute you will conclude the same.

-{ Quote: "None of the leader ones, like the best of them, PC Tools Firewall Plus, fail ShieldsUP testing.
" }-

Then check malware defender ,SSM with Shields UP ( turn off Windows firewall)
.
I tried it today. It passed ShiedsUP but made my Internet slow.
I checked it with comodo leak test . It scored poorly 180/340. SO its not a good HIPS as well as firewall.:wacko:
PC tools firewall plus is the worst firewall :thumbd:
:dry:

-{ Quote: "Then check malware defender ,SSM with Shields UP ( turn off Windows firewall)
.
I tried it today. It passed ShiedsUP but made my Internet slow.
I checked it with comodo leak test . It scored poorly 180/340. SO its not a good HIPS as well as firewall.:wacko:
PC tools firewall plus is the worst firewall :thumbd:
:dry:" }-
I'm talking about the Firewalls, of course. Also, why you think PC Tools Firewall Plus is the worst? It passes ShieldsUP testing and is a leader in Matousec's tests.

PC Tools Firewall Plus is a freeware Windows personal Firewall. It's very lightweight and unobtrusive, as it is built using the new Windows Filtering Platform (WFP) - therefore offering great and precise support to newest versions of protocols (IPv6) and Windows OSes, both 32-bit (x86) and 64-bit (x64) versions of: Vista, Server 2008, 7 and Server 2008 R2. They still support XP as well, but only the 32-bit (x86) version.