Your opinions on the most secure firewall?

Discussion in 'other firewalls' started by Metal425, Jan 24, 2008.

Thread Status:
Not open for further replies.
Page 2 of 2
  1. houseisland

    houseisland Registered Member

    Joined:
    Jan 12, 2006
    Posts:
    107
    Ditto... if you interpret the thread title as "Your opinions on the best firewall." The answer will vary, case by case. In additions to expectations of functionality, we also need to know the user's level of experience and/or willingness to learn. We also need to know the hardware platform -- try putting Online Armor on a PII laptop with 128 Mb of RAM. :)
     
    houseisland, Jan 30, 2008
    #26
  2. MikeNash

    MikeNash Security Expert

    Joined:
    Jun 9, 2005
    Posts:
    1,658
    Location:
    Sydney, Australia
    I wouldn't put XP on a PII laptop with 128mb of RAM :)
     
    MikeNash, Jan 31, 2008
    #27
  3. Hermescomputers

    Hermescomputers Registered Member

    Joined:
    Jan 9, 2006
    Posts:
    1,069
    Location:
    Toronto, Ontario, Canada, eh?
    PII? Wow, must be a certified museum piece! (Just thinking how much that crap cost someone... Ouch!).
     
    Hermescomputers, Jan 31, 2008
    #28
  4. ccsito

    ccsito Registered Member

    Joined:
    Jul 27, 2006
    Posts:
    1,579
    Location:
    Nation's Capital
    I am still using a PII system. Luckily it didn't cost me a penny (even the shipping was free). :D :thumb: :cool:
     
    ccsito, Feb 1, 2008
    #29
  5. jobeard

    jobeard Registered Member

    Joined:
    Jan 31, 2008
    Posts:
    15
    Location:
    So. Cailf
    Most routers we use at home only have DHCP, NAT and SPI features but don't really
    qualify as hardware routers -- yea some even have filters -- but still that's not
    enough.

    A real hardware firewall appliance has a serial cable for a monitor attachment
    and can be configured without any attachment to a lan-side system.
    IF this device is administered by a professional network engineer, then everything
    on the LAN side is controlled (and protected by the same rules).
    This is real network security -- all systems configured alike from one interface.

    Like you, I can't afford one of these either, so we opt for a cheap router
    (at least we get NAT and SPI) and then use a software FW for each system.
    Using a 'decent 2-way FW' (unlike the MS default being 1-way inbound only),
    we get to control both sides of the connections.

    All those pop-ups --- they're trying to further qualify which applications are
    allowed to make connections. When you start your email client and (the first
    time) you get the popup, you know you started the program and ports
    25,110,143 are valid so you ALLOW.

    Two days (or minutes) later something named xyx.dll wants access to port 25.
    Hopefully you get a popup and you say to yourself, "What the Heck!" --
    what's xyx.dll and why is it trying to send email!!     DENY! DENY! DENY.
    You just slammed the door on some worm trying to steal info from your system!

    Don't you love those popups :) I DO! :thumb:
     
    jobeard, Feb 1, 2008
    #30
Page 2 of 2
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...