Re: Firewall Suggestions

From: Duane Arnold (notme@notme.com)
Date: 01/22/03 

From: "Duane Arnold" <notme@notme.com>
Date: Wed, 22 Jan 2003 06:33:05 GMT

I agree with Stup on everything except for two of them.

1) The Win98 issue is obvious to me that application works on Win98. I have
been there when moving an app to like Win 2k or even to another Win98 or Win
2K to Win 2K and watched the app *crap* with me being on the phone with the
vendor completely pissed at the whole situation. The old saying goes, if
it's not *broke* don't *fix* it.

2) The Linksys router is good for protecting from an attack from the
Internet. But the router is useless on the LAN side. And once a machine is
infected with a self populating worm, virus etc. etc., the machines will
attack each other on the LAN or private side of the router , because of the
vary nature of the Win O/S(s) with MS file and Print Sharing, TCP/IP and
NetBeui, etc., the machines are vulnerable to each other.

That's why I and anyone else who uses BlackIce 3.5 IDS/firewall knows that
BlackIce will not only back-up the router with its protection from attack
from the Internet, but will protect the machine from attack from another
machine on the LAN. BlackIce will protect even if IP(s) have been accepted
between machines, if the BlackIce IDS sees an attack such as a worm, virus,
etc coming in the network traffic between machines, BlackIce's IDS will
instruct the firewall to block traffic from the other machine.

To this day, I have a Win 2K laptop at work that is my primary VB
development machine that I bring home and connect to the router so that I
can VPN to the job's network on weekends. That machine has got a worm on it
that has defeated F-secure and I got F-Secure up and running again and the
machine up and running to continue my work. I don't have time to have Tech
Support rebuild it right now. I connect it to my network and watch BlackIce
on my other machines start to protect.

Hey, that's it. And the facts are that no other firewall for the Windows
Desktop can protect like that.

Duane :) 

--
The protection of the machine is a process and is not a given!

Relevant Pages

  • Re: Firewall Suggestions
    ... > 2) The Linksys router is good for protecting from an attack from the ... But the router is useless on the LAN side. ... for the entire LAN plus a software firewall is just overkill. ... BlackIce will protect even if IPhave been accepted ...
    (comp.security.firewalls)
  • Re: Firewall Suggestions
    ... > 2) The Linksys router is good for protecting from an attack from the ... But the router is useless on the LAN side. ... > BlackIce will not only back-up the router with its protection from attack ... BlackIce will protect even if IPhave been accepted ...
    (comp.security.firewalls)
  • Re: My router does not give me enough port options
    ... There is only one that will protect that machine and give the protection ... I have come from behind the router on ... occasions with BlackIce and it has protected the machine. ... sharing on Win 2k machine with BlackIce *accepting all IP* on ports 137, ...
    (comp.security.firewalls)
  • Re: Buffer Overflow in Norton
    ... The only one that can protect against this type of an attack is BlackIce. ... keep your towel and: ...
    (comp.security.firewalls)
  • Re: Routers Firewall
    ... > indicates that it has firewall technology, then the router doesn't have a ... What your router does have is NAT. ... ZA is a fine product which will protect a computer ... Port 80 is the WEB access port and port 21 is the FTP ...
    (comp.security.firewalls)