Best Software Firewall

Discussion in 'OT Technology' started by WannaZO6, Mar 7, 2004.

  1. WannaZO6

    WannaZO6 There are 10 types of people in the world, the one

    Joined:
    Feb 24, 2002
    Messages:
    1,005
    Likes Received:
    0
    Location:
    Richmond, VA
    There are tons of viruses and spyware crawling the network here in the dorm. Can anyone reccomend a kickass firewall i can run to protect my computer? :)
     
  2. B78

    B78 Jeeper

    Joined:
    Jun 23, 2001
    Messages:
    8
    Likes Received:
    0
    Location:
    Baton Rouge, LA
    I used ZoneAlarm before I upgraded to Windows XP. It protects you from both incoming and outgoing attacks and it is free. Now I use the XP Firewall and a hardware firewall.
     
  3. Leb_CRX

    Leb_CRX OT's resident terrorist

    Joined:
    Apr 22, 2001
    Messages:
    39,994
    Likes Received:
    0
    Location:
    Ottawa, Canada
    I despise zonealarm, I vote for norton...
     
    Last edited by a moderator: Mar 8, 2004
  4. Aimless

    Aimless Resident drunkey

    Joined:
    Nov 5, 2001
    Messages:
    2,534
    Likes Received:
    0
    Location:
    Wisconsin
    Please disregard everything that's been posted and use Sygate.
     
  5. I vote for outpost firewall. You just install it and go. I have tried zonealarm, didn't like it very much. Norton is IMO a resourse hog.
     
  6. Keyzs

    Keyzs OT Supporter

    Joined:
    Nov 3, 2003
    Messages:
    814
    Likes Received:
    0
    Location:
    Charlotte, MI
    Software Firewall != kickass firewall

    Norton is a resource hog...
    Zonealarm is just an advertisement for itself.

    I suggest going and buying a cheap router and save yourself the hassle...
     
  7. Ridley

    Ridley New Member

    Joined:
    Sep 11, 2003
    Messages:
    3,867
    Likes Received:
    0
    +1
     
  8. Joe_Cool

    Joe_Cool Never trust a woman or a government. Moderator

    Joined:
    Jun 30, 2003
    Messages:
    299,488
    Likes Received:
    615
    IPTABLES > *software firewall and it's free.

    But a router is easier to use, and nearly foolproof - NOTHING gets to your computers behind the router unless you forward ports.
     
  9. cmsurfer

    cmsurfer ºllllllº

    Joined:
    Jun 6, 2003
    Messages:
    5,079
    Likes Received:
    0
    Location:
    NJ
    Ditto on the router. I have never had any luck with a software firewall. Problems after problems. I am currently using ZoneAlarm because I have a webserver, but trust me, it's not by choice.

    Routers are the best way since everything is ideally blocked unless you specify a port to be opened.

    HTH>

    CM.
     
  10. 5Gen_Prelude

    5Gen_Prelude There might not be an "I" in the word "Team", but

    Joined:
    Mar 14, 2000
    Messages:
    14,519
    Likes Received:
    1
    Location:
    Vancouver, BC, CANADA
    :ugh: Are you kidding me? Routing DNS names to dummy IPs is a horrible solution.

    I've used Zone at work and home and I have yet to come across someone who says anything tangibly bad about it. Zone is fairly proactive in trying to keep their software up to date which I like, it has the ability to trust certain programs, ask for others and deny for more. I know some people have had bad experiences with crashing but with over 10 computers installed and running for a couple of years, I haven't run into one.

    I do suggest a hardware firewall though - but if you're cheap I recommend Zone - based on several computers experience - not just one bad install.
     
  11. Joe_Cool

    Joe_Cool Never trust a woman or a government. Moderator

    Joined:
    Jun 30, 2003
    Messages:
    299,488
    Likes Received:
    615
    Um, I suppose it's possible that I'm using it wrong, but I have no clue what you're talking about. Have you used iptables?

    It's simple rule-based, stateful firewalling. It does everything that zonealarm can do, except it runs at kernel level in linux, and doesn't have the flashy GUI (but there are lots of front ends available for it. When I use one, I use firestarter).

    Edit: It sounds like you're talking about adding entries to /etc/hosts or c:\{SystemRoot}\system32\drivers\etc\hosts.

    That's totally different.
    It's an entirely different kind of flying. Altogether.
     
    Last edited: Mar 8, 2004
  12. 5Gen_Prelude

    5Gen_Prelude There might not be an "I" in the word "Team", but

    Joined:
    Mar 14, 2000
    Messages:
    14,519
    Likes Received:
    1
    Location:
    Vancouver, BC, CANADA
    That's what assumed we were talking about - Windows. But I don't believe IPTables allows you to block specific programs (ie - a trojan could use the same ports as your legit mIRC sessions).
     
  13. Joe_Cool

    Joe_Cool Never trust a woman or a government. Moderator

    Joined:
    Jun 30, 2003
    Messages:
    299,488
    Likes Received:
    615
    That's what ToS (Type of Service) filtering is for. :)
     
  14. Rob

    Rob OT Supporter

    Joined:
    Jul 6, 2002
    Messages:
    88,626
    Likes Received:
    41
    Location:
    Atlanta, GA
    OpenBSD's PF > IPTables :o
     
  15. Black Light

    Black Light Guest

    Zone Alarm Pro + Norton Internet Security Suite 2004 > *.software firewall :embd:
     
  16. Joe_Cool

    Joe_Cool Never trust a woman or a government. Moderator

    Joined:
    Jun 30, 2003
    Messages:
    299,488
    Likes Received:
    615
    Actually, I've heard this. I don't know for sure, but I won't argue.
     
  17. Keyzs

    Keyzs OT Supporter

    Joined:
    Nov 3, 2003
    Messages:
    814
    Likes Received:
    0
    Location:
    Charlotte, MI
    IPTables, ToS, PF's great stuff if your running linux and have a good idea what your doing. But there is nothing more INSECURE than a Linux box in the hands of someone who has no clue how to secure it. (Just think about it, BIND, SNMP, DNS, go check out the security issues with them)

    ZoneAlarm, Norton why waste the memory, space and all the hassle. (And I have a dozen horror stories about Zonealarm, let a salesrep install it on a laptop and wait for the phone calls.)

    Yea all works, but for $30 you can get a 4 port router and not have to worry about any of it. If your cheap go get an OLD junk PC and run IPCop (Linux without needing to have a clue about linux).
     
  18. 5Gen_Prelude

    5Gen_Prelude There might not be an "I" in the word "Team", but

    Joined:
    Mar 14, 2000
    Messages:
    14,519
    Likes Received:
    1
    Location:
    Vancouver, BC, CANADA
    Yeah, you need to /yourself if you're letting sales people have any access other than the Start->Shut Down command.

    And unfortunately too many people think like this. I absolutely agree that it's a great tool to reduce/eliminate hackers from outside of the router into your computers. Unfortunately, it doesn't prevent your computer from accessing the internet without you knowing. I've fixed two SOHOs that relied only on a router to protect them so far.
     
  19. Black Light

    Black Light Guest

    :werd: :bowdown: :bowdown: :bowdown:

    very well said :bigthumb:
     
  20. StevesVR4

    StevesVR4 Get Arrested

    Joined:
    Jul 1, 2003
    Messages:
    7,328
    Likes Received:
    0
    Running two software firewalls on the same system :nono:

    They both will be competing for the same resources and slowing each other donw. It is like running two different anti-virus programs on the same box, don't do it.
     

Share This Page