Discussion in 'other firewalls' started by J_L, Jun 30, 2011.
In case anyone is interested.
Thanks! I grabbed a 6-month license for Ft Knox Firewall (FKFW). I will test it on one of my secondary images.
AFAIK, FKFW has no HIPS-- unlike Outpost, Private FW, & Online Armor. Ergo, if FKFW runs really light & strong, I plan to pair it up with HIPS-apps such as SpyShelter or Mamutu & let it run for a while.
thanks going to test it out
thx for the info
they have "built-in Intrusion Prevention System"
does that means HIPS?
Does the 180 days start now or when you install it?
Thanks for info, i will test it.
Thanks for the heads up. Anyone here using it yet?
No, it is not a HIPS.
In trialing FKFW I found that its I/O usage is much much higher than Private FW, or Online Armor, or Outpost. This extra I/O usage by FKFW is strange since the other 3 named FW all have HIPS whereas FKFW does not. OTOH, FKFW does have a good looking GUI.
I shall not keep this FW.
Thanks for your post! I shall pass on this.
Interesting. I installed it, and am finding no I/O issue at all. In fact it is one of the lightest firewalls I've tried since the old Ghostwall. I may in fact leave it on my machine.
I tried it in a vm on a XP guest, and watched the Fort Knox processes while I launched different applications and surfed the web. The I/O and cpu usage were 0 the whole time. Maybe it was the virtual environment, I don't know, but in that instance, it was very efficient.
Thanks for the link.
Hi all, I haven't tried FKPF (yet) but reading the PDF, I saw under Options; Enable Process Defense System.
To what extend does this offer HIPS(like) features in combination with features like the 'Trusted applications'- and 'Enable fingerprint authentication' options?
Is there any chance to get some nice screenshots of this wonderful program ?
Thx for the info
I will test the IO usage
Here's from Softpedia: http://www.softpedia.com/progScreenshots/FortKnox-Personal-Firewall-Screenshot-45140.html
I just tried it again, but this time in a real XP machine instead of a VM, and got the same results with respect to I/O and cpu usage (0). Running the program with default settings. Also, I think the ram usage for the firewall is actually less with the real machine than it was in the VM. Very light firewall. Both clean XP sp3 installs fully updated with no other security software installed.
Edit: It or something has however slowed my internet download speed to a crawl on that XP machine. I didn't try to tweak the default settings. I Uninstalled it and the internet download speed is back to normal.
Thanks. This looks promising. Though, traffic monitor made me to feel something like deja vu (which is no problem, just a cool feeling)
This is the one that is based on the old Sygate Personal Firewall if I remember right, so parts of it should actually look somewhat familiar....
Curious whether they have fixed the local proxy hole I reported 3 years ago or is this just the same girl in a new dress?
Also what happens when your 180 days are up?
Don't quote me on it, but I imagine it would revert back to the free version, with some features disabled, if not you would have to renew the subscription.
Does FortKnox Personal Firewall support IPv6 ?
Hola Pete- I measured I/O usage by Process Hacker's "Total I/O" column. FtK showed 2 processes & was using 3-5 KB I/O almost constantly. I trialed FK on a clean image so I'm sure there were no FW remnants on it. Will trial it again in a week or so. No time now. Will grab some screenshots of Process Hacker for FK when I re-trial.
Confucious say: In year of the rabbit, screenshot is better than thousand words.
Testing platform: VMWare 7, Windows 7x64
Process Explorer shows the FortKnoxGUI.exe routinely spikes the CPU excessively, and CPU time for it seems quite high imo, although I could be off base here, especially since I haven't run any software firewalls or HIPS in a long time, preferring the built-in stuff in Windows instead
It seems not possible (at least I don't see it) to create fine-tuned rules from application alerts, allowing the option to set specific protocol, ports and ip address values. It can't even be done in the "Individual Application Rules" window. Instead it has to be done within the "Advanced Firewall Rules/Filtering" window, starting from scratch, forcing the user to build them manually. Rather cumbersome.
Ok...screenshots from Anvir Task Manager
Separate names with a comma.