* Whats the best firewall today ?? *

Discussion in 'OT Technology' started by Stratosphere, May 24, 2006.

  1. Stratosphere

    Stratosphere ๏̯͡๏) ๏̯͡๏) ๏̯͡๏) ๏̯͡๏) ๏̯͡๏) ๏̯͡๏)

    Joined:
    Apr 24, 2005
    Messages:
    9,226
    Likes Received:
    0
    Location:
    Home
    No NIS please...

    :hs:
     
  2. Moofman

    Moofman Whose name you comin' in? By Who power?

    Joined:
    Nov 4, 2005
    Messages:
    1,793
    Likes Received:
    0
    Location:
    Home of the cotton fields
    Was about to ask the same thing
     
  3. cmsurfer

    cmsurfer ºllllllº

    Joined:
    Jun 6, 2003
    Messages:
    5,079
    Likes Received:
    0
    Location:
    NJ
    I have no problems with XP SP2's firewall.
     
  4. d0rkus

    d0rkus I has a booger. OT Supporter

    Joined:
    May 6, 2002
    Messages:
    9,788
    Likes Received:
    1
    Location:
    Cullyfornia
    don't know if it's the best, but i use Sygate, a few OTers recommended it to me a few times...
    used to use Zone Alarm...
     
  5. 7960

    7960 New Member

    Joined:
    Oct 17, 2004
    Messages:
    60,415
    Likes Received:
    0
    Location:
    New England
    best.......... for whom? what level of user? how much interaction do you want to have? do you want to customize it? how often? are you willing to study and act on pop-ups for a few days to customize it? will you ever read a log?

    MS firewall
    zone alarm
    blackice
    tiny

    all those are "best" depending on the user.
     
  6. CyberBullets

    CyberBullets I reach to the sky, and call out your name. If I c

    Joined:
    Nov 13, 2001
    Messages:
    11,865
    Likes Received:
    0
    Location:
    BC, Canada/Stockholm, Sweden
    software firewalls = the lose. the packets have already reached their destination. Nothing a little bit of packet manipulation can't do to bypass those.

    your best bet is still a hardware firewall.
     
  7. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    To be sure. Any piece of dedicated hardware (unless it's much, much older) is going to work so much faster than a software solution that it can be thorough without slowing down throughput. If you're going to use a software firewall, though, it's better to get one that tells you what it's doing -- as opposed to the Windows Firewall which doesn't tell the user a thing -- without pestering you constantly at the same time.

    I much prefer Sygate over ZoneAlarm. Last time I used ZoneAlarm it locked down every computer I had it on when I uninstalled it. I had to go to someone else's house and look on their website for the special instructions for uninstalling ZA's emergency lockdown. (because nobody would ever remove it unless they were trying to break in.) Unless Zone Labs has changed their anti-sabotage approach since then (a couple of years ago), I'd stay the hell away from it.
     
  8. bandwagon

    bandwagon Copy/Paste

    Joined:
    May 27, 2005
    Messages:
    1,501
    Likes Received:
    0
    I assume you aren't asking about a PIX-type appliance...

    so... pfSense on a diskless 386
     
  9. P07r0457

    P07r0457 New Member

    Joined:
    Sep 20, 2004
    Messages:
    28,491
    Likes Received:
    0
    Location:
    Southern Oregon
    BEST is gonna be something from juniper, or a cisco PIX.

    But I assume you don't have that kind of cash.
     
  10. Keyzs

    Keyzs OT Supporter

    Joined:
    Nov 3, 2003
    Messages:
    814
    Likes Received:
    0
    Location:
    Charlotte, MI
    Any router doing NAT.
     
  11. P07r0457

    P07r0457 New Member

    Joined:
    Sep 20, 2004
    Messages:
    28,491
    Likes Received:
    0
    Location:
    Southern Oregon
    NAT isn't even a firewall... :rolleyes:
     
  12. kingtoad

    kingtoad OT Supporter

    Joined:
    Sep 2, 2003
    Messages:
    55,914
    Likes Received:
    8
    Location:
    Los Angeles
    I use m0n0wall.
     
  13. EagerZeroedThick

    EagerZeroedThick New Member

    Joined:
    May 16, 2002
    Messages:
    5,971
    Likes Received:
    0
    Location:
    In a blade enclosure near you
    pick up a cisco pix 501 off ebay

    1 outisde interface, 1 internal interface (which is a 4 port switch)
    ACLs + NAT = ftw

    hire me to configure it ftmfw
     
  14. Nefarious77

    Nefarious77 Guest

    A company I used to work for setup a dedicated firewall box with IPcop and required all his clients to buy one.

    http://ipcop.org/
     
  15. Joe_Cool

    Joe_Cool Never trust a woman or a government. Moderator

    Joined:
    Jun 30, 2003
    Messages:
    299,189
    Likes Received:
    508
    :werd:

    Either BSD/pf or Linux/iptables on a machine optimized for routing. Nothing else even comes close.
     

Share This Page