Interaction between PG 2 and Software Firewalls

Discussion in 'other firewalls' started by Escalader, Oct 8, 2007.

Thread Status:
Not open for further replies.
  1. Escalader

    Escalader Registered Member

    Joined:
    Dec 12, 2005
    Posts:
    3,710
    Location:
    Land of the Mooses
    Regarding PG 2 and Software Firewall cooperation

    When incoming packets from blocked ip's (as shown in PG 2's view history of blocks tab), is it true that the Software Firewalls (SWF) did not filter the packet? If wrong please explain.

    When outgoing packets to blocked ip's (as shown in PG 2's view history of blocks tab), is it true that the SWF did filter and pass the packet? If wrong please explain.
     
  2. lucas1985

    lucas1985 Retired Moderator

    Joined:
    Nov 9, 2006
    Posts:
    4,047
    Location:
    France, May 1968
    Think of this scenario:
    You're using application aaa (P2P) which doesn't use random ports: Firewalls rules should be the following:
    - Outbound TCP from local endpoint [local port range] to any remote endpoint [port x].
    - Outbound UDP from local endpoint [local port range] to any remote endpoint [port x].
    - Inbound TCP from any remote endpoint [local port range] to local endpoint [port x].
    - Inbound UDP from any remote endpoint [local port range] to local endpoint [port x].
    Do you see the logic? You aren't restricting IPs (any remote endpoint both inbound and outbound) which is what PG2 does (P2P list). The firewall has little to filter :)
     
  3. Escalader

    Escalader Registered Member

    Joined:
    Dec 12, 2005
    Posts:
    3,710
    Location:
    Land of the Mooses
    Yes, I suspect it doesn't matter which tool does the block.

    If the FW settings are going to block it in or out it will.

    If PG 2 blocks in in or out it will.

    In either case we get the benefit of both packet filters thus strengthening your layered defense.
     
Loading...
Thread Status:
Not open for further replies.