ICF -- needed with hardware firewall?

J

John Blaustein

I have a home network:

DSL modem connected to DSL line
SonicWALL 10 connected to DSL modem
Switch connected to SonicWALL
4 PCs connected to switch -- 2 running XP Home, 2 running 98SE

On the two XP machines, is it necessary to enable the Internet Connection
Firewall for the DSL connection, even though I have the hardware firewall?
If so, which Settings should be checked (on)?

When connecting via dial-up, I have ICF enabled. Which of the Settings
should be turned on?

Thank you.

John
 
B

Bruce Chambers

Greetings --

No. WinXP's built-in firewall cannot add any level of protection
to that of a hardware firewall, as it monitors only inbound traffic.

Even good hardware firewalls (and NAT-capable routers) do nothing
to protect the user from him/herself. Again -- and I _cannot_
emphasize this enough -- almost all spyware and many Trojans and worms
are downloaded and installed deliberately (albeit unknowingly) by the
user. So a software firewall, such as Sygate or ZoneAlarm, that can
detect and warn the user of unauthorized out-going traffic is an
important element of protecting one's privacy and security. Most
antivirus applications do not scan for or protect you from
adware/spyware, because, after all, you've installed them yourself, so
you must want them there, right?

I use both a router with NAT and Sygate Personal Firewall, even
though I generally know better than to install scumware. When it
comes to computer security and protecting my privacy, I prefer the old
"belt and suspenders" approach.


Bruce Chambers

--
Help us help you:



You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH
 
J

John Blaustein

Thank you, Bruce. Very helpful info.

John

Bruce Chambers said:
Greetings --

No. WinXP's built-in firewall cannot add any level of protection
to that of a hardware firewall, as it monitors only inbound traffic.

Even good hardware firewalls (and NAT-capable routers) do nothing
to protect the user from him/herself. Again -- and I _cannot_
emphasize this enough -- almost all spyware and many Trojans and worms
are downloaded and installed deliberately (albeit unknowingly) by the
user. So a software firewall, such as Sygate or ZoneAlarm, that can
detect and warn the user of unauthorized out-going traffic is an
important element of protecting one's privacy and security. Most
antivirus applications do not scan for or protect you from
adware/spyware, because, after all, you've installed them yourself, so
you must want them there, right?

I use both a router with NAT and Sygate Personal Firewall, even
though I generally know better than to install scumware. When it
comes to computer security and protecting my privacy, I prefer the old
"belt and suspenders" approach.


Bruce Chambers

--
Help us help you:



You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH
Click to expand...
 
B

Bruce Chambers

Greetings --

You're welcome.

Bruce Chambers

--
Help us help you:



You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Redundant Firewall Redundancy? 1
Windows Firewall-Can't Turn On 5
ICF Question 3
MS VPN & Firewall problem 5
SonicWALL/cable Internet/dynamic IP configuration help needed 4
ICF - USER - RUN AS? 2
WinXP and ICF 20
XP Home ICF Option Grayed Out 4

Top