Firmware Firewalls

Discussion in 'other firewalls' started by qualserve, Mar 9, 2003.

Thread Status:
Not open for further replies.
  1. qualserve

    qualserve Registered Member

    Joined:
    Mar 8, 2003
    Posts:
    5
    Location:
    New Hampshire - Live Free Or Die
    :doubt: I have been advised that I need no other firewall then that built in to my Netgear FVS318 Router/Switcher. Monitoring the logs does seem to indicate a steady rejection of spurious probes to my network. I would like more opinions on the effectiveness of Netgear ProSafe VPN Firwall. Thanks for your help!
     
  2. CrazyM

    CrazyM Firewall Expert

    Joined:
    Feb 9, 2002
    Posts:
    2,428
    Location:
    BC, Canada
    Hi qualserve

    While that may be true for some, it would not apply to everyone. Users have to assess their own needs/risks based on their set up and usage (users) of systems.

    Hardware devices are great as a system independent means to stop all unsolicited inbound traffic.

    You now have to assess your set-up, usage and in particular - users - of the systems behind the router/gateway. Router/gateways can provide some control over traffic passing through them to the Internet. Do you need/want specific control over what communications the systems behind the router/gateway are permitted to do? Is application control a concern? To have this type of control - security - of systems behind the router/gateway will require software firewalls on those systems.

    Regards,

    CrazyM
     
  3. root

    root Registered Member

    Joined:
    Feb 19, 2002
    Posts:
    1,723
    Location:
    Missouri, USA
    It seems to me with the exception of closing a couple of ports, I have little concern about being "attacked" from the internet side.
    I am much more concerned about controlling traffic that leaves my machine and securing my lan. For that, I want a software firewall.
     
  4. qualserve

    qualserve Registered Member

    Joined:
    Mar 8, 2003
    Posts:
    5
    Location:
    New Hampshire - Live Free Or Die
    Thanks to all who replied to my question. This is a very useful and professionally run forum! :D :D
     
  5. JimIT

    JimIT Registered Member

    Joined:
    Jan 22, 2003
    Posts:
    1,035
    Location:
    Denton, Texas
    I'd like to echo comments by others...

    Qualserv...I think you have a great little piece of equipment there! Like a couple of posters have mentioned, hw firewalls usually merrily let your apps pass OUT to the internet without complaint, so if you don't KNOW *what* app is hitting the web, you have cause for concern IMO.

    If this was *my* home (or small business for that matter) network and particularly if there are a lot of "downloaders" on your network ;), I too would strongly consider installing a software firewall such as ZA or Sygate as a complement to the router, just to issue passes to legitimate outbound traffic.

    An antitrojan app such as BOClean might also come in handy as an additional line of defense against bad guys should they get past the fw's.

    Have fun with it! :D
     
Loading...
Thread Status:
Not open for further replies.