What is the best firewall ? hardware or software?
- Thread starter KETRNG
- Start date
Harware will always be better than software, simply becaue it takes no resources off of your machine. Now, I have used both, and actually prefer software versions, cause my hardware only let me forward 10 ports, whereas if I use a software one, I can also utilize a software port forwader, so I bypass that limit.
It's what your needs are though that really determine what's best for you.
Jay
It's what your needs are though that really determine what's best for you.
Jay
I don't care about the resources. If I going to pay 1100$, I want really high security. The hardware firewall is really gives me more security ?
Hardware firewall has some software too that has updates sometimes ?
Sorry about the bad English...
Hardware firewall has some software too that has updates sometimes ?
Sorry about the bad English...
i saw somewhere that the nortan firewall thing is not good? i dont think so. Zonealarm is good i think.
Go with the hardware firewall, it has the benefit of being unseen, you don't have to worry about software updates (and their cost), and uses no system resources to run.
I'm using Blackice right now and love it, I had it before all these hardware models hit the scene. The advantages of software, you can see how many and what types of attacks you're recieving, it's easily customizable, easy to update, cheaper at the moment compared to a hardware version.
If given the choice between Blackice and a hardware firewall now, I'd go with the hardware. It's neat to see how many attacks you get (and scary too), but it gets old real fast.
Just my .02 worth.
I'm using Blackice right now and love it, I had it before all these hardware models hit the scene. The advantages of software, you can see how many and what types of attacks you're recieving, it's easily customizable, easy to update, cheaper at the moment compared to a hardware version.
If given the choice between Blackice and a hardware firewall now, I'd go with the hardware. It's neat to see how many attacks you get (and scary too), but it gets old real fast.
Just my .02 worth.
Slapstick
Golden Member
- Oct 11, 1999
- 1,082
- 0
- 0
I use the Linksys router, (NAT ) and Zonealarm. The router acts as a basic hardware firewall that allows me to share my connection between 3 pc?s and ZA monitors both incoming and out going traffic. Works good for me, easy to set up and a lot cheaper than the 3com Proconnect
"it has the benefit of being unseen, you don't have to worry about software updates (and their cost)".
First, thank you.
Buy, are you can tell me what this "it has the benefit of *being unseen*" ??? you mean this hardware firewall fide my IP or something ?
"you don't have to worry about software updates" - So what happen if the hackers has some new way to intruder computers... so still I don't need and software updates ?
Because in 3COM site I was software updates for their hardware fire wall.....
First, thank you.
Buy, are you can tell me what this "it has the benefit of *being unseen*" ??? you mean this hardware firewall fide my IP or something ?
"you don't have to worry about software updates" - So what happen if the hackers has some new way to intruder computers... so still I don't need and software updates ?
Because in 3COM site I was software updates for their hardware fire wall.....
The best thing about ZoneAlarm is that its FREE for personal use. And its a very competant firewall as well!
phatty
phatty
I use a router (NAT) but in my visable computer option I have it check and a fake internet address entered (this addresses a Telnet problem by making incoming packets on Telnet hit a deadend street) I then have both Zone Alarm and Sygate (Both are free to Home users). Both of these products are excellant. Both of these programs look at what is coming into your computer instead of using a group of preinstall traits. This means that these firewalls are always learning on their on. Additionally Zone Alarm allows you to trace the flagged web address.
Next I am using a program called SurfinGuard Pro, this program is a sandbox that blocks Active X scripts, Java applets, executables, embedded objects, scrap files and script files that might invade your computer sendin information or rewriting files. AND GUESS WHAT! IT'S FREE ALSO FOR HOME USERS)
Get a Router, then go to the following links to download the programs.
http://www.securityportal.com/ (Firewall Download links)
http://www.finjan.com/ (for the SurfinGuard program)
After you install them go to http://grc.com/ (Not Mistyped) and you can test your security using the "Shields Up" tester. Then on the Finjan Site you can test the other blocking.
If you are worried about Spyware (Doubleclick, Bizrate) you can download Steve Gibson's OptOut for free at the grc.com site. Another item that helps with Spyware (they reside in your cookie files and Temporary internet files) is Windows Washer from http://www.webroot.com/ This is a program that washes items like cookies, temporary internet file, IE5 Form complete, Document tracks, Recycle bin, and is cutomizable with free downloads from webroot. It also has a bleaching feature (Overwrites files a number of times with a sequence of ones and zeros before erasing them)that make files unrecoverable. Its a great program and additionally frees up a lot of space by getting rid of a lot os Garbage that would take you several minutes to get rid of. The program is downloadable for $29.95 (there is a 15 day trial that you can get for free)
So you buy a router for $149.00 and Windows Washer for $29.95, install the other free programs and put the rest of the money to some other use.
Next I am using a program called SurfinGuard Pro, this program is a sandbox that blocks Active X scripts, Java applets, executables, embedded objects, scrap files and script files that might invade your computer sendin information or rewriting files. AND GUESS WHAT! IT'S FREE ALSO FOR HOME USERS)
Get a Router, then go to the following links to download the programs.
http://www.securityportal.com/ (Firewall Download links)
http://www.finjan.com/ (for the SurfinGuard program)
After you install them go to http://grc.com/ (Not Mistyped) and you can test your security using the "Shields Up" tester. Then on the Finjan Site you can test the other blocking.
If you are worried about Spyware (Doubleclick, Bizrate) you can download Steve Gibson's OptOut for free at the grc.com site. Another item that helps with Spyware (they reside in your cookie files and Temporary internet files) is Windows Washer from http://www.webroot.com/ This is a program that washes items like cookies, temporary internet file, IE5 Form complete, Document tracks, Recycle bin, and is cutomizable with free downloads from webroot. It also has a bleaching feature (Overwrites files a number of times with a sequence of ones and zeros before erasing them)that make files unrecoverable. Its a great program and additionally frees up a lot of space by getting rid of a lot os Garbage that would take you several minutes to get rid of. The program is downloadable for $29.95 (there is a 15 day trial that you can get for free)
So you buy a router for $149.00 and Windows Washer for $29.95, install the other free programs and put the rest of the money to some other use.
In any security situation you will have to keep an eye on updates, remarks, patches, bugs of the product you use, both hard- and software. What he meant (I think) by being unseen, is that a (good) hardware firewall is completly stealth, regardless of what's behind it. When you have a software firewall, which lets you connect to the net, or gives connecting rights to a certain program, those actions can be traced from the outside. With the HW firewall it will seem as there is no network at all.
Another thing about software firewall is that they give out rights to connect to the outside to programs/apps. This is much easier to set up, especially peer-to-peer things like napster for sharing all your homemade music. With HW firewalls you can olny specify ports, which is more secure, but much more of a pain with dynamic progs like the peer-to-peer thingy's.
I would go with the hardware firewall if I were you. But regardless of what you do, get some reading on firewalls to make sure you know what yout starting. A nice start is GRC.
Hope this clears things out,
Menel.
EDIT: Somebody beat me to it
Another thing about software firewall is that they give out rights to connect to the outside to programs/apps. This is much easier to set up, especially peer-to-peer things like napster for sharing all your homemade music. With HW firewalls you can olny specify ports, which is more secure, but much more of a pain with dynamic progs like the peer-to-peer thingy's.
I would go with the hardware firewall if I were you. But regardless of what you do, get some reading on firewalls to make sure you know what yout starting. A nice start is GRC.
Hope this clears things out,
Menel.
EDIT: Somebody beat me to it
Get the D-Link "DI-704" Switch/Firewall. Its only $99.00 @ Best Buy. Easy to set up and VERY secure. You can set where and on what ports you want access through your PC.
Software can always be bypassed. A hardware firewall (switch) cant be tricked, there is no software to fool, just much harder to get around.
Go here for the goods: Wall of Fire
Software can always be bypassed. A hardware firewall (switch) cant be tricked, there is no software to fool, just much harder to get around.
Go here for the goods: Wall of Fire
"software firewall is that they give out rights to connect to the outside to programs/apps. This is much easier to set up, especially peer-to-peer things like napster for sharing all your homemade music. With HW firewalls you can olny specify ports"
I don't know how to set ports of my software... I am not aderestand what you said...
For now I have ZoneAlarm and avery software that connect to the net need my "OK". In the hardware firewall this is different ?
and...
You really think that the product is worth the money (1000$) ?
I don't know how to set ports of my software... I am not aderestand what you said...
For now I have ZoneAlarm and avery software that connect to the net need my "OK". In the hardware firewall this is different ?
and...
You really think that the product is worth the money (1000$) ?
Ket:
Its all about what you consider better. Straight answers!
* Hardware is more secure than software.
* Hardware will take more work (setup) than software to use efficiently. It wont give you POP-UP windows saying this and that happened. It wont(pop-up) ask you if you want to allow access to do this or that. If you dont go in and set it right, you just wont get access!
* All hardware firewalls are D@MN near equal in sercurity, in other words, one is not easier that the other to get past, be it 3com, dlink, linksys or Cisco.
* Just like software, different hardware firewalls have different features (you are going to have to research them to find out what offers what). Example - Faster (data throughput), remote email alerts, ect....
Now I hope that answers all your questions.....
Its all about what you consider better. Straight answers!
* Hardware is more secure than software.
* Hardware will take more work (setup) than software to use efficiently. It wont give you POP-UP windows saying this and that happened. It wont(pop-up) ask you if you want to allow access to do this or that. If you dont go in and set it right, you just wont get access!
* All hardware firewalls are D@MN near equal in sercurity, in other words, one is not easier that the other to get past, be it 3com, dlink, linksys or Cisco.
* Just like software, different hardware firewalls have different features (you are going to have to research them to find out what offers what). Example - Faster (data throughput), remote email alerts, ect....
Now I hope that answers all your questions.....
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
News NVIDIA and Intel to Develop AI Infrastructure and Personal Computing Products- Started by poke01
- Replies: 360
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 22K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
Facebook
Twitter