BillyGoat1978 Posted October 13, 2003 Share Posted October 13, 2003 Hi All, I have a small network running which is making use of a one way satellite DVB solution for Internet. This requires me to uplink using a different internet connection and requires a router to work. As such i have conected an ISDN modem to a WinXP computer with routing enabled and the setup is operational. However, I need a firewall on the WINXP router and need recommendations on that. The firewall needs to be configured for use on a router and needs to only block "hacker" traffic. Please recommend me one. I have access to ZoneAlarm, Kerio, Norton. Also, the router runs a POP3 Mail server and a Web Server. So the firewall needs to be able to handle this also. I am familiar with the basics of ZoneAlarm and have been using it for sometime now. Will it serve my purpose. I need it to be configured for use on a router and I am not quite sure. Thanks in advance. Sumit Link to comment Share on other sites More sharing options...
Samoa Posted October 13, 2003 Share Posted October 13, 2003 I use an recommend Kerio first. But Sysgate makes router software. Their firewall is similiar to others, reasonably good too. Link to comment Share on other sites More sharing options...
OPaul Posted October 13, 2003 Share Posted October 13, 2003 Windows XP Firewall. Link to comment Share on other sites More sharing options...
best_uv_d_best Posted October 13, 2003 Share Posted October 13, 2003 Opaul... that's a crappy answer, dude... :x *barf* Agreez w/ samoa: Kerio. Link to comment Share on other sites More sharing options...
OPaul Posted October 13, 2003 Share Posted October 13, 2003 How do you figure that? The Windows XP firewall does everything he just mentioned. Link to comment Share on other sites More sharing options...
best_uv_d_best Posted October 13, 2003 Share Posted October 13, 2003 the firewall integrated w/ XP isn't very good... it's like an extremely lite version of a firewall with some weaknesses that should just be bypassed as a whole... IMHO :) Link to comment Share on other sites More sharing options...
Frank Posted October 13, 2003 Share Posted October 13, 2003 I would have to agree with OPaul. It works very well if it is configured properly, and it will probably work the best with ICS. Link to comment Share on other sites More sharing options...
OPaul Posted October 13, 2003 Share Posted October 13, 2003 the firewall integrated w/ XP isn't very good... it's like an extremely lite version of a firewall with some weaknesses that should just be bypassed as a whole... IMHO :) What weaknesses does it have? Excluding all outbound vulnerabilities because the XP Firewall doesn't block outgoing. Link to comment Share on other sites More sharing options...
username Posted October 13, 2003 Share Posted October 13, 2003 no firewall or the xp one of you are behind a router... thats all you need Link to comment Share on other sites More sharing options...
best_uv_d_best Posted October 13, 2003 Share Posted October 13, 2003 well i was including the outbound traffic... Other than that you're right, OPaul. It would do everything he wants it to do. Link to comment Share on other sites More sharing options...
OPaul Posted October 13, 2003 Share Posted October 13, 2003 no firewall or the xp one of you are behind a router... thats all you need I thought he was referring to the XP machine as his router. Link to comment Share on other sites More sharing options...
Liquid Posted October 13, 2003 Share Posted October 13, 2003 I use the McAfee personal firewall plus, its great, kinda bulky tho Link to comment Share on other sites More sharing options...
Frank Posted October 13, 2003 Share Posted October 13, 2003 I think the outgoing port issue of ICF will probably be fixed the beginning of this year. Microsoft said they would be beefing it up and also enabling it (DOH!) in the next service pack of XP. I thought he was referring to the XP machine as his router. From his first post, I thought the same thing. Link to comment Share on other sites More sharing options...
panicswitched Posted October 13, 2003 Share Posted October 13, 2003 if your using apache for your webserver dont use zonealarm they dont play nice, and if your runing IIS well your a moron :) i use sygate Link to comment Share on other sites More sharing options...
OPaul Posted October 13, 2003 Share Posted October 13, 2003 (edited) I think the outgoing port issue of ICF will probably be fixed the beginning of this year. Microsoft said they would be beefing it up and also enabling it (DOH!) in the next service pack of XP. I hope they don't make that mandatory, one of the reasons I use ICF is because it doesn't bother with outgoing traffic. I hate my outgoing traffic to be blocked, it pointless. I know what's coming from my computer. By the way where did you read that? I can't find anything on it. Edited October 13, 2003 by OPaul Link to comment Share on other sites More sharing options...
Frank Posted October 13, 2003 Share Posted October 13, 2003 I am sure they will let you open up all of the ports, but it probably come defaulted to close. The stupid users screw it up for everyone!!! :) https://www.neowin.net/comments.php?id=1436...0&category=main Link to comment Share on other sites More sharing options...
MitchShrader Posted October 15, 2003 Share Posted October 15, 2003 I use sygate. I'd recommend Kerio if you're familiar with it. I'd DIS-recommend ZA, & Norton, and the XP included firewall sure as heck is "lite'' .. though you might possibly be satisfied with it, i've seen an abnormal occurrance of 'issues' and don't trust it to be stable or reliable. Link to comment Share on other sites More sharing options...
Stingray Posted October 16, 2003 Share Posted October 16, 2003 Zone Alarm Pro seems like a pretty good firewall. Link to comment Share on other sites More sharing options...
mtrftw Posted October 16, 2003 Share Posted October 16, 2003 icf is just going to be enabled by default, not that big of a deal. Link to comment Share on other sites More sharing options...
AndyD Posted October 16, 2003 Share Posted October 16, 2003 OutPost Pro!! :) Link to comment Share on other sites More sharing options...
Frank Posted October 16, 2003 Share Posted October 16, 2003 (edited) icf is just going to be enabled by default, not that big of a deal. It is going to have ALOT more changes then just enabling it by default..... From what I understand you will also be able to scan outgoing traffic instead of just incoming traffic. You will also be able to block outgoing ports. For companies with more then one XP machine, you will be able to administer all of the ICF settings from one location. That sounds like a lot more then just enabling it. Edited October 16, 2003 by Fowen Link to comment Share on other sites More sharing options...
dougkinzinger Posted October 16, 2003 Share Posted October 16, 2003 Right. The ICF in SP2 will rock bootie. Link to comment Share on other sites More sharing options...
Recommended Posts