G
Guest
If I have a router and file sharing carefully enabled, will the sp2 firewall
provide extra protection to the xp computers on my home lan and,if so, how?
provide extra protection to the xp computers on my home lan and,if so, how?
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
G
Guest
I am nop expert on this matter, but i have read posts suggesting that extra
layer of security is good.
Anyt experts comments?
layer of security is good.
Anyt experts comments?
S
Scott M.
Yes. You didn't mention if your router has a built in firewall (some do,
some don't). Even if it does, this hardware firewall should catch most
unauthorized traffic, but a software firewall (Windows or some other) is
also recommended to monitor individual pc's for any traffic that might have
gotten through the hardware firewall.
some don't). Even if it does, this hardware firewall should catch most
unauthorized traffic, but a software firewall (Windows or some other) is
also recommended to monitor individual pc's for any traffic that might have
gotten through the hardware firewall.
B
Bruce Chambers
Greetings --
WinXP's built-in firewall is _adequate_ at stopping incoming
attacks, and hiding your ports from probes. What WinXP SP2's firewall
does not do, is protect you from any Trojans or spyware that you (or
someone else using your computer) might download and install
inadvertently. It doesn't monitor out-going traffic at all, other
than to check for IP-spoofing, much less block (or at even ask you
about) the bad or the questionable out-going signals. It assumes that
any application you have on your hard drive is there because you want
it there, and therefore has your "permission" to access the Internet.
Further, because the Windows Firewall is a "stateful" firewall, it
will also assume that any incoming traffic that's a direct response to
a Trojan's or spyware's out-going signal is also authorized.
ZoneAlarm, Kerio, or Sygate are all much better than WinXP's
built-in firewall, and are much more easily configured, and there are
free versions of each readily available. Even the commercially
available Symantec's Norton Personal Firewall is superior by far,
although it does take a heavier toll of system performance then do
ZoneAlarm or Sygate.
Now, if you use a so-called hardware firewall, which is most
likely just a router with NAT, it's still a good idea to use a 3rd
party software firewall. Like WinXP's firewall, NAT-capable routers
do nothing to protect the user from him/herself. Again -- and I
_cannot_ emphasize this enough -- almost all spyware and many Trojans
and worms are downloaded and installed deliberately (albeit
unknowingly) by the user. So a software firewall, such as Sygate or
ZoneAlarm, that can detect and warn the user of unauthorized out-going
traffic is an important element of protecting one's privacy and
security. Most antivirus applications do not scan for or protect you
from adware/spyware, because, after all, you've installed them
yourself, so you must want them there, right?
I use both a router with NAT and Sygate Personal Firewall, even
though I generally know better than to install scumware. When it
comes to computer security and protecting my privacy, I prefer the old
"belt and suspenders" approach.
The SP2 Firewall's most important virtues, I think, are it's
improved compatibility with internal LANs and its configurability via
group policies. Now, there's a simple, cheap tool that system admins
can use to protect the LAN workstations from that occasional - but not
rare enough - fool who manages to bypass the perimeter firewall and
manually install some malware that could then spread throughout the
LAN via shared drives.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH
WinXP's built-in firewall is _adequate_ at stopping incoming
attacks, and hiding your ports from probes. What WinXP SP2's firewall
does not do, is protect you from any Trojans or spyware that you (or
someone else using your computer) might download and install
inadvertently. It doesn't monitor out-going traffic at all, other
than to check for IP-spoofing, much less block (or at even ask you
about) the bad or the questionable out-going signals. It assumes that
any application you have on your hard drive is there because you want
it there, and therefore has your "permission" to access the Internet.
Further, because the Windows Firewall is a "stateful" firewall, it
will also assume that any incoming traffic that's a direct response to
a Trojan's or spyware's out-going signal is also authorized.
ZoneAlarm, Kerio, or Sygate are all much better than WinXP's
built-in firewall, and are much more easily configured, and there are
free versions of each readily available. Even the commercially
available Symantec's Norton Personal Firewall is superior by far,
although it does take a heavier toll of system performance then do
ZoneAlarm or Sygate.
Now, if you use a so-called hardware firewall, which is most
likely just a router with NAT, it's still a good idea to use a 3rd
party software firewall. Like WinXP's firewall, NAT-capable routers
do nothing to protect the user from him/herself. Again -- and I
_cannot_ emphasize this enough -- almost all spyware and many Trojans
and worms are downloaded and installed deliberately (albeit
unknowingly) by the user. So a software firewall, such as Sygate or
ZoneAlarm, that can detect and warn the user of unauthorized out-going
traffic is an important element of protecting one's privacy and
security. Most antivirus applications do not scan for or protect you
from adware/spyware, because, after all, you've installed them
yourself, so you must want them there, right?
I use both a router with NAT and Sygate Personal Firewall, even
though I generally know better than to install scumware. When it
comes to computer security and protecting my privacy, I prefer the old
"belt and suspenders" approach.
The SP2 Firewall's most important virtues, I think, are it's
improved compatibility with internal LANs and its configurability via
group policies. Now, there's a simple, cheap tool that system admins
can use to protect the LAN workstations from that occasional - but not
rare enough - fool who manages to bypass the perimeter firewall and
manually install some malware that could then spread throughout the
LAN via shared drives.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH
G
Guest
I was told NOT to use windows firewall with a router but
to use some other 3rd party firewall. I have XP pro and a
d-link 604 router. Why is this?
to use some other 3rd party firewall. I have XP pro and a
d-link 604 router. Why is this?
B
Bruce Chambers
Greetings --
Because WinXP's built-in firewall offers no more protection than
the router (if it's NAT-capable) already provides. A 3rd-party
firewall would provide the added benefit of monitoring out-going
traffic - something that neither the router or WinXP's firewall does.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH
Because WinXP's built-in firewall offers no more protection than
the router (if it's NAT-capable) already provides. A 3rd-party
firewall would provide the added benefit of monitoring out-going
traffic - something that neither the router or WinXP's firewall does.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH
G
Guest
Bruce Chambers said:Greetings --
Because WinXP's built-in firewall offers no more protection than
the router (if it's NAT-capable) already provides. A 3rd-party
firewall would provide the added benefit of monitoring out-going
traffic - something that neither the router or WinXP's firewall does.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH
G
Guest
(bottom posting...)
Bruce;
Good post on the firmware firewall in most "modems"...yeah, I know it's
really a router.
I belive that due to your post, I will be getting ZoneAlarm as well, but I
was wondering 2 things - if you might know how the firewall in an Actiontec
DSL router works? (seeing as how it is configurable)
And question 2 - I discovered right away how to turn OFF the SP2 firewall,
and even turned off the radio button for XP to check to see if I have a
firewall turned on, since Win doesn't recognize my router's firewall. Fina
and dandy, but every time I reboot, that Furshlugginer message that I don't
have my firewall turned on pops up and I have to go into settings and unclick
that radio button again. ARGH!!
Anyway, any hel;p on the second question would be a big help. Thanks!
Bruce Chambers said:Greetings --
Because WinXP's built-in firewall offers no more protection than
the router (if it's NAT-capable) already provides. A 3rd-party
firewall would provide the added benefit of monitoring out-going
traffic - something that neither the router or WinXP's firewall does.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH
<snip>
Bruce;
Good post on the firmware firewall in most "modems"...yeah, I know it's
really a router.
I belive that due to your post, I will be getting ZoneAlarm as well, but I
was wondering 2 things - if you might know how the firewall in an Actiontec
DSL router works? (seeing as how it is configurable)
And question 2 - I discovered right away how to turn OFF the SP2 firewall,
and even turned off the radio button for XP to check to see if I have a
firewall turned on, since Win doesn't recognize my router's firewall. Fina
and dandy, but every time I reboot, that Furshlugginer message that I don't
have my firewall turned on pops up and I have to go into settings and unclick
that radio button again. ARGH!!
Anyway, any hel;p on the second question would be a big help. Thanks!
Ask a Question
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.