Running 2 firewalls

[John Fitzsimons]

The performance actually became worse - the system failed tests running
both firewalls that it passed running only Sygate. This tends to support
the idea of the two firewalls causing conflicts and hampering each
other's performance.

< snip >

That would depend on the firewalls and whether their settings are
configured exactly the same way. I have used multiple firewalls for
years and rarely had any problems.

If my primary firewall misses something then the next one doesn't.

Regards, John.
--
****************************************************
,-._|\ (A.C.F FAQ) http://clients.net2000.com.au/~johnf/faq.html
/ Oz \ John Fitzsimons - Melbourne, Australia.
\_,--.x/ http://www.vicnet.net.au/~johnf/welcome.htm
v http://clients.net2000.com.au/~johnf/

 

[elaich]

Anti-vir does not like (gave trojan warnings) "copycat.exe",
"wallbreaker.exe", "ghost.exe", "dnstester.exe", and "surfer.exe". I
will guess that with Anti-Vir and Sygate, I have good detection.

That's because, in essence, they actually ARE Trojans. Their purpose is to
see if they can get by your firewall. And I was running Sygate also until I
saw that it has one of the lowest scores on that site.

 

[Kerodo]

That's because, in essence, they actually ARE Trojans. Their purpose is to
see if they can get by your firewall. And I was running Sygate also until I
saw that it has one of the lowest scores on that site.

Sygate is also the heaviest on cpu resources of all the firewalls out
there, and has that famous loopback issue as well. It's nice, but there
are better alternatives.

 

[David]

On 28 May 2005 18:28:03 GMT, elaich <[email protected]> typed furiously:

[...]

If only ZA didn't insist on staying in contact with home base. I don't
trust any app that does that. There's no reason for it except to collect
information.

Disable the automatic check for updates and refuse it rights to use
the net. I don't know if any other firewall will allow you to disallow
self connection but ZoneAlarm does.

 

[David]

You're an idiot. These tests which are actually thte ones from GRC.com
are flawed.

Can you cite reasons for this claim?

 

[Chrissy Cruiser]

After looking at www.firewallleaktest.com,

Bad link.

and seeing Sygate's atrocious
showing, I decided to experiment.

www.grc.com Sygate well reviewed but I am having all kinds of problems
getting it properly configed to apps.

I am still flunking the ICMP ping test on Type 8.

I installed Kerio 2.1.5 and let them
both run at the same time, to see if Kerio would catch some of the stuff
that Sygate allowed through.

The performance actually became worse - the system failed tests running
both firewalls that it passed running only Sygate. This tends to support
the idea of the two firewalls causing conflicts and hampering each
other's performance.

Thanks, elaich, for trying this.

I was very surprised to see that Zone Alarm was a far better performer
against these tests than any of the other free firewalls. Look'N'Stop was
the best, but is also payware.

If only ZA didn't insist on staying in contact with home base. I don't
trust any app that does that. There's no reason for it except to collect
information.

ZA is a resource hog, had more problems with it interfering in places it
didn't need to be.

 

[Chrissy Cruiser]

I had no trouble:

http://www.firewallleaktester.com/

Good link, adding the "er" to the end.

 

[Chrissy Cruiser]

Sygate is also the heaviest on cpu resources of all the firewalls out
there, and has that famous loopback issue as well. It's nice, but there
are better alternatives.

Such as......?

 

[Chrissy Cruiser]

That would depend on the firewalls and whether their settings are
configured exactly the same way. I have used multiple firewalls for
years and rarely had any problems.

If my primary firewall misses something then the next one doesn't.

What are you running together, what OS?

 

[John Fitzsimons]

What are you running together, what OS?

I have done this with different firewalls over the years. A number
were payware and/or demoware. I cannot remember all their names but
Zone Alarm, Kerio, BlackICE, etc. are some that I have multi tasked.
Usually on a '98 system.

Regards, John.
--
****************************************************
,-._|\ (A.C.F FAQ) http://clients.net2000.com.au/~johnf/faq.html
/ Oz \ John Fitzsimons - Melbourne, Australia.
\_,--.x/ http://www.vicnet.net.au/~johnf/welcome.htm
v http://clients.net2000.com.au/~johnf/

 

[El Gee]

That's because, in essence, they actually ARE Trojans. Their purpose
is to see if they can get by your firewall. And I was running Sygate
also until I saw that it has one of the lowest scores on that site.

Point taken.

So, bad on me for using 2 proggies that are not so good, but good enough
to tell me that the proggies were trojans?

Seriously, I may look at other firewalls, but I have been using Sygate
for years, eve since ZA started giving me fits. Sygate mya use 10 megs
of RAM, but it has not failed me yet.

Thanx for the input.

--
++++++++++++++++++++++++++++++++++++++++++++++
El Gee // www.mistergeek.com <><
Know Christ, Know Peace - No Christ, No Peace
Remove .yourhat to reply
++++++++++++++++++++++++++++++++++++++++++++++

 

[elaich]

Seriously, I may look at other firewalls, but I have been using Sygate
for years, eve since ZA started giving me fits. Sygate mya use 10 megs
of RAM, but it has not failed me yet.

I've tried a couple and so far, I'm not impressed. Outpost Free has a bug
in it. I tried the evaluation version of Look'N'Stop, and can't believe
that you have to accept it's built in ruleset. One of those is "allow
most ordinary email, browser programs, etc." I don't like having that
control taken away from me. I unticked this rule and then found that it
would not allow programs I specifically told it to allow. You also cannot
alter or add new rules to the built in ruleset (at least, I couldn't find
a way to do it.)

I notice that all the attacks that Sygate allows involves a Trojan
hijacking something. Maybe depending on a firewall to do that is
unrealistic. I'm thinking more and more that if the firewall does what
it's supposed to do, the hijacking is best dealt with other ways. First,
by not allowing the Trojan in to begin with. Second, using some kind of
program to detect the hijacking. I've never worried about Trojans - I've
never had one, and that is mainly because I practice safe surfing habits,
and don't use IE.

 

[Chrissy Cruiser]

Sygate is also the heaviest on cpu resources of all the firewalls out
there, and has that famous loopback issue as well. It's nice, but there
are better alternatives.

Do you realize you are famous on the Kerio forums?

 

[Kerodo]

Do you realize you are famous on the Kerio forums?

Nope, how so?

 

[Chrissy Cruiser]

Nope, how so?

http://tinyurl.com/ddkcu

<bowing low, backing out of room>

 

[Kerodo]

http://tinyurl.com/ddkcu

<bowing low, backing out of room>

Yep, I remember that. You have a good memory...

 

[Chrissy Cruiser]

Yep, I remember that. You have a good memory...

I have a small, blonde cranium so I morphed my memory stacks to where I am
most stacked.

Lotsa room.

 

[David]

I have a small, blonde cranium so I morphed my memory stacks to where I am
most stacked.

Lotsa room.

Bragging or dragging?

 

[Conor]

Can you cite reasons for this claim?

Take your pick of any discrediting news story.

http://grcsucks.com/
http://www.theregister.co.uk/2001/06/25/steve_gibson_really_is_off/
http://www.theregister.co.uk/2002/02/25/steve_gibson_invents_broken_syn
cookies/

 

[Chrissy Cruiser]

Bragging or dragging?

Yes.