firewall advice

krysia · Dec 02, 2007, 16:41:21

I've been using the free ZoneAlarm for sometime now but have just discovered that it's responsible for those times when I'm connected to the internet and have good stats and yet can't access any servers or my e-mail; it also stops me accessing my network drive when I log into my VPN and often makes it impossible for me to open Word documents in Outlook/webmail. So I've disabled it and fallen back on the Windows firewall. I'm looking for a replacement and wondered what free programme other IDNetters would recommend - I've seen the good PC Mag review of Comodo Pro 3, but have read very varying opinions from users. I run Windows XP Pro with SP2 and use free Avast (which I like very much) as my anti-virus software. Thnaks for any help you can give me!

Rik · Dec 02, 2007, 16:47:06

Hi Krysia

The Comodo 3 seems to have had a mixed reception, with members here reporting difficulties. Personally, I would recommend the Eset Security Suite, but you may not want to go for an all-in-one package.

I'm sure others will be along to recommend standalone firewalls shortly.

Simon · Dec 02, 2007, 16:54:32

Not a personal recommendation, as I use the F-Secure suite, but I think Agnitum Outpost is quite highly rated:

http://www.agnitum.com/products/outpostfree/index.php

Noreen · Dec 02, 2007, 18:07:48

I'm happily using Comodo Pro 2.4 and having no problems with XP SP2. I'm not upgrading until I'm sure that any problems with the new version have been sorted out.

merlin · Dec 02, 2007, 18:19:48

zone alarm was the best around, but zone labs amalgamated with another security company, and incorporated part of their firewall into zone alarm.

since then many people have had problems with zonealarm ,and have stopped using it, why zonelabs can't see that they are not doing theirselves any favours by this idea i don't know.

duncan · Dec 03, 2007, 21:46:43

Can anyone explain to me the benefit of a software firewall? Most of us probably have a pretty good firewall built into a broadband router which stops access to your LAN. Assuming this is the case, what benefit do you get from running one on the PC as well? My (limited) experience of them is that they just get in the way (constant false alarms and "do you really want to do this?" messages). If your local network is protected and you own it (ie there is no risk from others on your LAN) why do you need an extra resource hog on the PC?

Duncan

Ann · Dec 03, 2007, 21:51:33

Good question to which I do not know the answer. I only use the router firewall. When I had a modem, I used the XP firewall. Both stealth all ports as shown by the test at https://www.grc.com/x/ne.dll?bh0bkyd2 so I feel that either is good enough for me and I will not install another.

Simon · Dec 03, 2007, 21:54:24

Although I'm not sure what actual benefits a software firewall has over a router firewall, I personally feel more secure with both, as the software firewall does tell you what's going in and out of your PC (by asking permissions), and once they are set up, they don't really bother me that much. I have never fully understood how a router firewall works, given that the default seems to be to allow all traffic, but maybe I've misinterpreted that. I would be interested to see any tests that assess how secure a PC is with and without a software firewall, where a router firewall is active.

Lance · Dec 03, 2007, 22:28:04

I'm happy using only the windows firewall behind my router. Don't really know about the differences between the hardware and software, other than software probably gives more control and is easier to configure.

Noreen · Dec 03, 2007, 22:32:10

From the Shields Up site..........

"Just so you know, WinXP's built-in firewall does not attempt to manage or restrict outbound connections at all. It appears to be a useful firewall for hiding the machine from the Internet (it has "stealth mode" unsolicited packet handling), but you will still need to use a good third-party personal firewall if you wish to manage and control outbound connections from your system."

Lance · Dec 03, 2007, 22:36:54

Nothing to say that the 3rd party firewall can't be a hardware one! In relation to that quote, it may well be worth remembering that in Vista the firewall is set to allow all outbound connections by default.

Rik · Dec 03, 2007, 23:47:46

Broadly, Duncan, as Noreen alludes, the NAT firewall really only deals with incoming traffic. A software firewall deals with both incoming and outgoing. I ran both for six months after I switched to a router, and the software firewall had nothing to do, so nowadays I just rely on the router firewall. I do have good AV and spyware software, and none of my machines has ever caught so much as a cold.

I should qualify my position by adding that my use of the 'net is very 'safe', if you are involved in signiicant downloading, P2P etc, then I would recommend a software firewall.

krysia · Dec 04, 2007, 17:00:06

Thanks to all. I'd dearly love to use the firewall on my Billion router, but when I enable it, I can't connect to my e-mail or to my VPN - only to the web. It tells me I have to create packet filter and port filter rules to allow access, but I don't know which ones to create!

Lance · Dec 04, 2007, 22:05:22

Your email goes through on ports 110 & 25 (POP3 & SMTP respectively). I don't know for the VPN though!

As for the actual rules, I'm not able to help there either as I've never had a Billion router!

Rik · Dec 05, 2007, 00:17:13

It might be worth mentioning that GMail uses port 995 for POP, while the 1&1 auth-smtp server is on port 587.

krysia · Dec 05, 2007, 11:05:03

And my e-mail set-up is an IMAP one rather than POP.

Rik · Dec 05, 2007, 11:06:36

Does you email client show the port?

krysia · Dec 05, 2007, 12:57:10

I use OE and don't know how to check which port it uses - can you advise me?

Rik · Dec 05, 2007, 12:59:43

Go to Tools > Accounts > Mail accounts. Select the account you want to check and look at the Advanced tab for port numbers.

ducky22 · Dec 05, 2007, 13:21:52

IMAP uses port 143 or 993 if you're using the secure version.

Last week I firewalled everyone in my company out of using IMAP because I forgot some people used it, hehe. They've all been given a lecture on why they should be using Outlook 2003/2007 and its ability to use standard https port.

On the topic question... As long as you're careful and have a good antivirus, there is no need for a software firewall. If you're using a NAT based router then you're fine. Software firewalls are really only use (in my opinion) for kiddies who download anything that pops up and for people who use a modem.

Lance · Dec 05, 2007, 13:41:14

Quote from: ducky22 on Dec 05, 2007, 13:21:52
and for people who use a modem.

who should be shot anyway!

Rik · Dec 05, 2007, 14:16:56

Quote from: ducky22 on Dec 05, 2007, 13:21:52
On the topic question... As long as you're careful and have a good antivirus, there is no need for a software firewall. If you're using a NAT based router then you're fine. Software firewalls are really only use (in my opinion) for kiddies who download anything that pops up and for people who use a modem.

I concur.

MoHux · Dec 05, 2007, 18:29:26

There speaks a couple of people who have never had to rely on being given inherited equipment!!
Or have you just forgotten??

Lance · Dec 05, 2007, 20:30:42

I'm your first sentence. Rik, however, at his age could well be the second!

Rik · Dec 06, 2007, 00:08:08

I was always the technology guru in the family, I've never inherited a thing.