Re: Do I need Norton firewall now I have an ADSL modem/hub/router/firewall?
From: Chuck (none_at_example.net)
Date: 8 Oct 2004 11:42:09 -0500
On Fri, 8 Oct 2004 13:28:41 +0100, Alan F Cross <firstname.lastname@example.org> wrote:
>Just ditched my USB ADSL modem in favour of the D-Link DSL-G604T WiFi
>ADSL modem/hub/router/firewall. Now want to add security to the now
>exposed networked 2nd PC and laptop.
>I have Systemworks (anti-virus, firewall, etc, etc) on 1 PC only, and am
>looking for a 3-user pack. I see Symantec do a 3-user Anti-Virus pack.
>Do I still need the Norton firewall on top of my hardware firewall, or
>does Norton Anti-Virus cover what's needed, in the presence of the
A NAT router (not a true firewall) is a good outer layer in a layered defense.
You need a software firewall on each computer in your LAN; in case one computer
gets infected, a software firewall on the others could save you a lot of
trouble. Depending upon the effectiveness of the intruder detection log on the
D-Link, a software firewall is also a good idea to identify unknown programs
installed on your computer, generating outgoing traffic.
OTOH, both a (NAT) router, and a software firewall, are only 2 layers in a good
The third layer is good software, also on each computer. This layer has
AntiVirus protection. Realtime, plus a regularly scheduled virus scan.
Regularly updated. AV protection is not all that's needed today.
Adware / spyware protection. Realtime, plus a regularly run adware / spyware
scan. Regularly updated.
Complete instructions, using Spybot S&D and HijackThis (both free) are here:
Harden your browser. There are various websites which will check for
vulnerabilities, here are three which I use.
Block Internet Explorer ActiveX scripting from hostile websites (Restricted
Block known dangerous scripts from installing.
Block known spyware from installing.
Make sure that the spyware detection / protection products that you use are
Harden your operating system. Check at least monthly for security updates.
Block possibly dangerous websites with a Hosts file. Three Hosts file sources I
(The third is included, and updated, with Spybot (see above)).
Secure your operating system, and applications. Don't use, or leave activated,
any accounts with names or passwords with trivial (guessable) values. Don't use
an account with administrative authority, except when you're intentionally doing
The fourth layer is common sense. Yours. Don't install software based upon
advice from unknown sources. Don't install free software, without researching
it carefully. Don't open email unless you know who it's from, and how and why
it was sent.
The fifth layer is education. Know what the risks are. Stay informed. Read
Usenet, and various web pages that discuss security problems. Check the logs
from the other layers regularly, look for things that don't belong, and take
action when necessary.
Paranoia comes from experience - and is not necessarily a bad thing.