Re: Which home user router has a decent firewall inside it?
- From: comphelp@xxxxxxxxx (Todd H.)
- Date: 10 Dec 2007 14:27:28 -0600
John Adams <no@xxxxxxxxxxxxx> writes:
Gerald Vogt wrote:
Because that is not what the firewall of an average consumer brand
router does. Not for your LAN. The NAT translation on the router will
discard "unsolicited" packets. NAT will inspect any packets if at all.
You'll see the difference in the moment you turn off NAT (i.e. you
use
public IP addresses in your LAN) and keep the firewall active. In that
moment nothing will be filtered between the internet and your LAN
simply because by default the firewall on the router protects the
router itself but not your LAN.
Gerald
OK, and that is why you should run hardware router firewall and
software firewall too? I'm not on a LAN anyway. This is just for home
use. I share files between computers by using a USB thumbdrive.
The traditional answer to that is that a "software firewall"
generally has egress filtering and can alert you to specific programs
trying to get out to the internet, whereas a hardware device can't
give you such clues.
If the primary concern is blocking unsolicited traffic from the
internet, a sane SPI home gateway device should do fine.
The hardware device is generally a more robust solution because the
"personal firewall" software runs on top of windows... and we know
that windows is fairly complex and no infallable to say the least.
Just like network based and host based intrusion detection products
offer complementary protection, so do hardware and software "firewall"
solutions.
--
Todd H.
http://www.toddh.net/
.
- References:
- Which home user router has a decent firewall inside it?
- From: John Adams
- Re: Which home user router has a decent firewall inside it?
- From: Gerald Vogt
- Re: Which home user router has a decent firewall inside it?
- From: John Adams
- Re: Which home user router has a decent firewall inside it?
- From: Gerald Vogt
- Re: Which home user router has a decent firewall inside it?
- From: John Adams
- Re: Which home user router has a decent firewall inside it?
- From: Gerald Vogt
- Re: Which home user router has a decent firewall inside it?
- From: John Adams
- Which home user router has a decent firewall inside it?
- Prev by Date: Re: Which home user router has a decent firewall inside it?
- Next by Date: Re: Printer in the DMZ.
- Previous by thread: Re: Which home user router has a decent firewall inside it?
- Next by thread: Cisco ASA 5505 VPN Help
- Index(es):
Relevant Pages
|
