SSM + CHX-I + sensiveguard

I'm now using the combo SSM + kerio 2.1.5 (I'm in the learning curve of the former and have been a long time user of the later).

Do anyone here have tried / is using SSM + CHX-I + sensiveguard?
Do they work smoothly together?
Are sensiveguard's issues solved?

 

I have not tried Sensiveguard but have tried CHX-I with SSM & Kerio 2.1.5. I don't believe there are any conflicts with SSM, but I have read of there being some issues between Kerio & CHX-I. I know the combination did not work for me at all. CHX-I was always going nuts, giving me error messages, needing to close, etc. Also, if you are concerned about the fragmented packets issue with Kerio (which, I assume, is the reason you are considering running 2.1.5 and CHX-I together), there are other free firewalls out there that have proven themselves and which I feel would be better choices than Sensiveguard (such as Comodo, ZA free, Jetico 1).

 

If those fragmented packets passing is troubling you, why don't you just get a router. CHX-I takes also memory. 17 MB from my experience. Plus it is 2 packet filters same time.

https://www.wilderssecurity.com/showpost.php?p=852030&postcount=17

 

@ KDNeese

Thanks KDNeese, but I have read this post and I'm not so sure about that. I think that Harden-It 1.2 (free) is doing this registry teak, so it will let go outbound fragmented packets without reassembling them and kerio wouldn't notice them.

@ Jarmo P

Thanks Jarmo P. I see you are using Sygate 5.5 free. I also heard that syagate is very light on resouces, so why didn't you have mentioned sygate? Do sygate have any issues?

@ everyone

I've read this post @ castlecops. Do anyone have tried A-wall? What is your opinion?

 

I have run kerio 2.1.5 on my system for 1.5 years.

Sygate is an easy learned, light, stable firewall, that should NOT be used if you run local proxy software. Proxomitron is such and some antiviruses like Avast has them too. Makes you loose outbound connection protection of SPF.
It is no leaktest passer on its own.

With my current security setup I could use it. I have uninstalled one and installed other, switched between them many times.
But I remain in general with kerio.
They are both old discontinued firewalls.
You can read more from my user guide in the sig link below.

 

That is a good combination.

Personally I would not install, or advise a member to install 2 packet filter firewalls. Even if the installation may look o.k., there can be underlying conflicts with packet processing/filtering.

 

I see... Not using proxomitron is out of question! In that case kerio's fragmented packets problem is a lesser issue.

Do anyone have tried a-wall (download link still working) or have a user manual for it?

 

There are some posts on this:examples: here and here

 

Thanks Stem.

Although A-wall doesn't check the integrity of applications with network access, SSM would manage that, I think.

Concerning betauser2's question, can all ports be stealthed or not?

 

Yes, SSM would inform you of program change.

I never got around to checking on that, but this is not a security problem, as long as the ports are not open.

 

I know, but I rather prefer some obfuscation.

 

Have tested a-wall and I didn't like it:

1. doesn't have a way of controlling traffic by protocol,
2. doesn't have a way of controlling traffic by port / port range,
3. doesn't have a way of controlling traffic by IP / IP range.

Have tried hard to find a manual / tutorial, but I haven't found one. When I tested a-wall, I understood why: there isn't that much to configure.

And at least, but not the last, a-wall does not pass basic stealth tests:

• http://www.pcflank.com/scanner1s.htm
• http://www.grc.com/default.htm (shields up link)

I am totally disappointed by this software. I guess that I have been spoiled by an almost perfect firewall: Kerio 2.1.5.

Thanks everyone for your input. BTW do anyone have other suggestions?

 

Ogedei,

Have a look at blink and coreforce.

I am running Antivir free + DefendeWall paid + SSM free + SensiveGuard free (behind a router inbound firewall) on my wife's PC.

Reason for this is:
- DW gives no pop-ups
- SSM free can be run with user interface disconnected = no pop-up
- SensiveGuard can set (not default rules, but you can in-activate them)
custom rules to deny = no pop-ups

Performance is fast, even with IE7 and I have still left 750MB out of 1 GB memory

 

If you are using Windows 2000 or higher, then the fragmented packets problem isn't really a problem at all-- just use Harden-It. It can apply lots of registry tweaks, one of which prevents fragmented packets from being reassembled.

Phil