This is the hardest new firewall peoples

Discussion in 'other firewalls' started by emir, Jan 21, 2006.

Thread Status:
Not open for further replies.
  1. emir

    emir Registered Member

    Joined:
    Dec 21, 2005
    Posts:
    61
    Net Firewall is from NT Kernel Resources, it is not an application level firewall which makes it harder to bypass. It resides at the low level network level, and uses stateful packet inspection. I must tell you though that it is similar to Linux firewall in the sense that it is only as secure as you make it and by default it does not come locked down. You must be somewhat advanced user to lock it down, but like linux firewall it can be locked down much harder than usual windows firewall. You can apply unlimited incoming/outgoing packet/connection rules, as well as port to process mapping rules, we are talking about the best windows firewall out there for advanced users. The main reason besides these rules is that it resides at the low network level instead of application level which unlike other firewalls make the combination of this and the extremely fine-grained rules you can define which makes it the best in my opinion. Also it hasn't been out long enough to be dissected thoroughly by malicious individuals, and it is free for now.It can be found here http://www.majorgeeks.com/NeT_Firewall_d4477.html or http://www.ntkernel.com/w&p.php?id=18. It has a rating of perfect five with about 5 votes, if you are somewhat experienced at hardcore firewall configuration like Sygate's application rules for example this firewall is for you
     
  2. Brinn

    Brinn Registered Member

    Joined:
    Aug 5, 2004
    Posts:
    181
    Location:
    Canada
    It looks like it's a 30 day trial and $49.95 for a licence.
     
  3. Notok

    Notok Registered Member

    Joined:
    May 28, 2004
    Posts:
    2,969
    Location:
    Portland, OR (USA)
    Where did you find it for free? Both MajorGeeks and the vendor site list it as $50 per license..
     
  4. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    emir,

    did you know or tried CHX?
     
  5. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    If you think that's the hardest, try Core Force (well, not really just a firewall, but...).
     
  6. Brian N

    Brian N Registered Member

    Joined:
    Jul 7, 2005
    Posts:
    2,148
    Location:
    Denmark
    BitGuard has been using this method (ring 0) from day 1 since it was developed back in 2001 (or earlier, can't really remember), and it actually tells the OS which apps it can start/stop and so forth. If the firewall is disabled (by a hacker or some other nasty) it will shut down the Pc's connection & stop the attack (no connection=no attack). Other firewall makers of course saw this as a good idea and copied it. Some of the freebies still runs as an app however.
     
    Last edited: Jan 21, 2006
  7. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,695
    Hi,
    Sygate is hard? Noooooo.
    Jetico is hard. CHX-I is hard. Not Syggie...
    Mrk
     
  8. emir

    emir Registered Member

    Joined:
    Dec 21, 2005
    Posts:
    61
    My bad it's not free, but it is killing jettico for sure. No I haven't tried CHX, I will because I hear good things about it,but Brian n, I don't see bitguard on majorgeeks and it's rating on tucows is fairly low so I myself do not see fit to try it without at least minimal references. Core Force has to connect to the internet upon every installation, even if it was the best I would never use a firewall that connects before it is entirely installed. Mrkvonic, Sygate did used to be hard back in the day, now when I say hard you know I mean hard as in good, efficient, reliable, worthy of use, right. That said I apologize Net Firewall is not free I don't pay attention to software being free cause I don't pay for it, I either wipe my hard drive before trial is over or bust out John the Ripper or Cain and Abel on the license/activation key. I still should have looked carefully though my bad, I just tryin to point out good new uncracked product.
     
  9. SNT

    SNT Guest

    Ive heard about Jetico but I hear its really complicated.
    Where can I find CHX-I?
     
  10. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,695
    Last edited: Jan 25, 2006
  11. SNT

    SNT Guest

    Hi Mrkvonic

    With the first link you gave me it has 'CHX-I Packet Filter and/or NAT', which one is do you recommend? Also is it difficult to run?

    Thanks
     
  12. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    Is there a Firewall with the SAME userfriendliness as ZoneAlarm ?
    Somebody adviced me CHX-I as a userfriendly Firewall long ago, but that seems not to be true, if I read this :
    Sometimes I have the impression that some members call a firewall userfriendly, when they finally learned how to work with a less userfriendly firewall OR have already the knowledge to work with it OR have enough experience with other less userfriendly firewalls.
    Sorry but that is NOT userfriendly.

    ZoneAlarm IS an userfriendly firewall and that's why ZoneAlarm is so popular and the free version of ZA is also a reason.
    Pros and cons is a discussion for knowledgeable users only and less-knowledgeable users aren't interested in these discussions, because they don't understand it and aren't familiar with the internet vocabulary.
    Such users want only a NAME and a LINK to download a firewall and ZoneAlarm is certainly one of them.
    I really wonder how many firewalls are like ZoneAlarm.

    In general, rule-based firewalls are NOT userfriendly, UNLESS the firewall comes with pre-defined rules, that offer a decent protection after the install, equal to or better than ZoneAlarm.
    A less-knowledgeable user, who is planning to learn more about firewalls, is better of with such a firewall.

    IMHO you have to divide firewalls in three groups :

    1. Userfriendly firewalls all the way for users, who don't know much and don't want to know much (That's me).
    In general application-based firewalls are more userfriendly than rule-based firewalls.

    2. Rule-based Firewalls with good pre-defined rules for users, who don't know much and want to learn more.
    In general rule-based firewalls are always better, because you have more control.
    I always thought that Agnitum Outpost was one of these firewalls.
    I have worked with Outpost, which is ready after installation, but if you want MORE than the pre-defined rules, you have to learn more and that's why I ditched Outpost.

    3. Rule-based Firewalls for very knowledgeable users, who know exactly, what they are doing.
    Maybe Tiny Firewall is one of these firewalls. I've been reading their website and I felt like an idiot. :D
     
  13. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,695
    Hi,
    SNT - CHX-I is very difficult to run. Even their help specifies that this is not a solution for someone looking for an out-of-the-box solution.
    Erik - I agree, no firewall that compares to ZA in its simplicity. I tend to rate software by first impression - how well advanced in control of it I am after 120 sec. CHX-I is even more difficult than Jetico, IMHO.
    But,
    This thread was about the hardest and not the simplest...:)
    Mrk
     
  14. StevieO

    StevieO Guest

    They do make a Free filter driver FW.

    . . .

    This is simple classic TDI filter driver which works like personal application level firewall. It can deny incoming and outgoing TCP connections, UDP packets and packets sent via raw sockets and can log its activity. Complete source code is provided (as a VC++ project). Initially contributed by Alexander Goncharov, in the meantime this project is available for public at SourceForge.net.

    Open Source TDI Firewall

    http://www.ntkernel.com/wprod.php?ids=3

    Simple TDI-Based Open Source Personal Firewall for Windows NT4/2000/XP/2003

    http://sourceforge.net/projects/tdifw


    StevieO
     
  15. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    CHX isn't so difficult as you said... You only need to know something about the network and how it works, but just a few...

    Try the beta version that is very stable and have new nice features, with a good rules to add it, like you can find here ([1] the P2P filters have the ports that I use, so you have to change them for what you use... [2] the WLAN and LAN rules was made by the CHX author...), and add the rules when need, you will have a great, very low recourses and very fast protection...

    About the other configuration, you can see the online tour and the online documentation...

    Regards
     
  16. ErikAlbert

    ErikAlbert Registered Member

    Joined:
    Jun 16, 2005
    Posts:
    9,455
    Yes that's right. I better quit this thread. That's not the firewall, I'm looking for. :D
     
  17. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    :D :D :D
     
  18. SNT

    SNT Guest

    Is CHX-I free? Sorry about asking these question I just want to know before I start installing stuff on my system.
     
  19. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    Yes ;)
     
  20. SNT

    SNT Guest

    One final question, can it be easily configured for P2P?
     
  21. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    You can configure it for anything you want ;)

    On the #15 post of this Topic, I shared my rules for CHX, including some P2P for eMule, uTorrent, SoulSeek and Cabos. You just have to change it for the ports that you use on the P2P clients...
     
  22. controler

    controler Guest

    Brian N

    You and I have known BitGuard was a kernel mode firewall and if some of these people look back and do a search like they do on Google, they will find postings by EVEN Paul on this firewall.

    FUnny think is it never really took off here dispite all the good posts.

    Not that tough of a firewall to use really.

    Red Dwarf used to message me on yahoo but that did not last long. He dissapeared into the sunset :D

    As other will find Tiny is awesome but NOT user firendly and NOt for home users.

    I think GK described BitGuard as a Sandboxed firewall.
    Can not remember how he came up with that since sandbox is only an app firewall.

    But yes BitGuard could be compared to PG in a way plus connection and process guarding.

    I did receive a message here that Brian N is a BitGuard Guru so I would like to hear more Brian;)

    con
     
  23. whatabout

    whatabout Guest

    What about NetVeda Safety.Net? I find that to be a very good free firewall that runs at kernel level too. ;)
     
  24. manzz

    manzz Registered Member

    Joined:
    Oct 6, 2005
    Posts:
    55
    Thank you for posting this shortcut, I find this "firewall/sandbox system" as "really good"

    Regards
     
Loading...
Thread Status:
Not open for further replies.