Re: Linksys WRT54G and Firewall software

Gerald Vogt wrote:
Leythos wrote:

1) You don't need a personal firewall when you are behind a NAT device
that provides a private network without anything port forwarded.

3) The windows non-firewall included in XP SP2 will be more than enough,
but, if you take your laptop to other networks (school, work, friends) it
won't be enough in most cases.


That is not conclusive: The NAT does block (most) incoming connections. The XP SP2 firewall does block all (most) incoming connections when configured with no exceptions.


I am trying to figure out what you are talking about. The above statement makes no sense. The XP packet filter blocks all (most) incoming connections. And the NAT router blocks (most) incoming connections.

What does that have to do with the #3 statement when all that's being stated is that the XP FW may not be good enough when the OP's machine is not connected to the OP's network.

Where is the difference which explains why something else then the XP SP2 FW is needed elsewhere?

If the OP wanted to set a rule to stop outbound packets from leaving the machine, which the XP packet filter cannot do is one difference.


4) If you use your laptop on OTHER networks you really need to learn how
to check the Windows TCP/IP Settings, disable File/Printer sharing when
you are not home, and how to adjust/check the Windows XP SP2 non-firewall
settings for "Exceptions".


Again contradictory to 3): if you think you need something else than the XP SP2 firewall in other networks and you are running a other brand "non-firewall" software then the recommendation should be to check that the XP SP2 firewall is turned off and the 3rd party "non-firewall" is on.

Anyone with any expertise would know not to be double firewalled so as to not block packets that would normally reach the machine, if not for the double FW situation.

Two or more firewalls running on a computer result on average in less security then a single one as it is unpredicted what actually is blocked and what not and by which firewall which will jeopardize the consistency of and state table in any firewall (as they are generally stateful).

The poster never said that. Where are you coming up with this conclusion that it was even said by the poster?

You're reading into it what you want to read into it.

5) More important than a firewall, when behind a NAT router, is the
Antivirus software and your security methods - like not running as an
Administrator (best to run as a limited user), installing Fire Fox, not
using Outlook Express or Outlook if you use POP3 for email....


Most important to keep your system up-to-date and reduce the number of software on your computer. The less software you are running the less is vulnerable.

This makes no sense. The point of the computer is to run software. That's why computers were invented, other than that, just connect a computerized toaster oven to the Internet.


The less software the less you have to check for updates manually if it does not come with automatic updates.

That's life in the big city.

Subscribe to some good security notification lists like the one from Microsoft or US-Cert. Then you get timely notification of updates and you can update very quickly.

That's about the only thing you have said that makes some kind of sense

If you do all this you are very likely that your AntiVirus will never ever report anything relevant and thus will prove itself superfluous.

No one is going to do it. So why even bring it up.

If this is the advice you're giving your users, then they should kick you to the curb.

.

Relevant Pages

  • Re: Linksys WRT54G and Firewall software
    ... The windows non-firewall included in XP SP2 will be more than enough, ... The XP SP2 firewall does block all incoming connections when configured with no exceptions. ... XP SP2 firewall in other networks and you are running a other brand "non-firewall" software then the recommendation should be to check that the XP SP2 firewall is turned off and the 3rd party "non-firewall" is on. ...
    (comp.security.firewalls)
  • sp2 and networking problem
    ... The computer on which I installed sp2 is working fine, but the network is ... Disabling the Norton programs and the sp2 firewall does not help. ...
    (microsoft.public.windowsxp.network_web)
  • Re: Secure Win98 SE?
    ... John the Ripper program and run in on a network that runs 98's and it ... XP/2k have three levels of security. ... days in the OEM channel XP sp2 will be released in August. ... Group policy to adjust so that the firewall is on inside our networks ...
    (microsoft.public.windows.server.sbs)
  • Re: Linksys WRT54G and Firewall software
    ... The XP SP2 firewall does block all incoming connections when configured with no exceptions. ... And the NAT router blocks incoming connections. ... What does that have to do with the #3 statement when all that's being stated is that the XP FW may not be good enough when the OP's machine is not connected to the OP's network. ...
    (comp.security.firewalls)
  • Re: WPA/PSK: need to REPAIR to connect to inet
    ... When I upgraded to Xp SP2, I actually formatted my HD and reinstalled ... And I installed the latest dell network drivers. ... > and Dell finds all the latest drivers/etc for you). ...
    (microsoft.public.windowsxp.general)
Quantcast