Re: Most Popular Hardware Firewalls?

Leythos wrote:

Why exactly should one try to filter outgoing traffic when such a thing
like tunneling exists?

Because a firewall will block that type of thing in most cases. You
can't tunnel out unless the firewall permits you to reach a tunnel
endpoint.

Oh, you want to block the entire internet? Or just the entire WWW?

And intrustion prevention?
Is usually impractical.

Depends on the need of the user/client/company.

OK, it's almost always impractical.

Web filtering for the kids?
You mean "against the kids".

Not all filtering is "Against", as Parents we're suppose to protect our
kids while teaching them right from wrong. As a parent I block 13 of 14
types of content in our home, in addition to blocking many file
attachments and many downloadable types. That's working FOR the kids as
I can still expose them from a designated machine, but they are blocked
from machines not in the Common area.

Did you ever notice that the kids are clever and simply circumvent your
measures?

Home users usually don't need a firewall at all.

Wrong, those are the ones that need it most.

Totally wrong. Home users don't have a clue about networking so they
can't achieve any security with firewalls.

Just about every computer
I've seen connected directly to the Internet in a residential setting
has been compromised. At the same time, just about every one of them
connected to a Firewall has remained uncompromised, and most with a NAT
are uncompromised.

You never took a deeper look, didn't you? The biggest source for
compromise remains being MSIE, where no firewall can help.
.

Relevant Pages

  • Re: Exchange Outlook und Sygate Personal Firewall
    ... > Ich versuche per Outlook mein Exchange Postfach abzurufen. ... wenn meine Sygate Personal Firewall deaktiviert ist. ... Ich hab deinen Beitrag so verstanden, daß der Tunnel nur aufgebaut ...
    (microsoft.public.de.exchange)
  • Re: Telnet over WAN latency troubleshooting
    ... up an SNMP rule on the firewall central site firewall and let the Alpha ... the tunnel they should not be aware of the traffic type... ... either to the customer central site or our own location. ... the latency is very obvious; when we telnet back to ...
    (comp.os.vms)
  • RE: How safe is a VPN connexion from within an internal network?
    ... Your biggest problem will be that with a tunnel originating behind your ... firewall, all the tunnel traffic through your firewall is encrypted and ... How safe is a VPN connexion from within an internal network? ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ...
    (Security-Basics)
  • RE: [fw-wiz] so much for "deny all"
    ... Despite the obvious problems firewall vendors are ultimately ... tunnel traffic over innocuous ports. ... Kerry Thompson, CCNA CISSP ...
    (Firewall-Wizards)
  • Re: Reverse Shell?
    ... >> behind a firewall so I can't ssh into their computer. ... > follow the tunnel back to their machine and then help them. ... Connections to that port will be forwarded through the ...
    (Debian-User)