f13.net

I used to run ZoneAlarm, which sucked more and more each update, then I tried some other undocumented piece of shit that fucked over my ports.  I have decided that maybe it is time to wrap my internet-willy once again, and I am too lazy to assemble a linux rig to do this.  Anyone have any suggestions?

The commercial ones (NAV, MacAfee) seem to work reasonably well. Some programs don't play nice with one or the other, but you will find that for any software firewall. I use NAV myself.

What's wrong with a router that has a builtin firewall?

You don't necessarily have to assemble a Linux rig to act as a hardware firewall.  You can get one a' them little router/firewall gizmos for something like $30 nowadays.

(What Viin said.)

newegg.com FTW?  I don't know anything about networking, despite the fact that I work with a corporate LAN constantly.

Yeah, or even Best Buy.  The things are pretty simple... you plug your cable modem into one end and your computer into the other.  The firewall sits in the middle and keeps the barbarians from invading.  There's generally a web-based interface that lets you configure the firewall to let certain kinds of traffic through if appropriate while blocking all others.

D-Link still considered better than Linksys?

You know, I have a little blue Linksys box with five holes in the back that I use to connect lesser computers and my rig to the DSL modem.  Wonder if I still have that manual.  If it has a web interface or anything configurable, I'll have to smack myself with a blunt object for that one.  You guys are a pretty helpful lot.

Plug the little sucker in, open up your browser, and type in 192.168.0.1. In most cases, that will bring up your config screen.

Chances are the password is 'admin'

Shhh, don't tell anyone.

My password is Money, Power or Sex. I never remember.

I use a Belkin router that seems to work pretty well. I used D-Link before that with no problems and a Linksys before that which died from firmware updates. I avoid Linksys now.

I get mixed feedback but at one time the D-Link seemed to have the best reports stability.  I've always bought Linksys but yeah I recently turned one into a doorstop after a firmware update.  I have a wireless ISP now and get weird latency occasionally - no doubt mostly due to the analog transport.

Which wireless ISP do you use? Is it local only or one of the more national ones?

Very much a local operation, though in the process of being gobbled up. (http://www.partnershipwireless.com/)

I don't like their new version (I run their old one on the 'rents PC since it runs Win2k), but Kerio's firewall isn't half bad.

http://www.kerio.com/kpf_home.html

I've heard there's a firewall built-in to XP SP2.

I was going to mention that.  It is pretty Zonealarm-ish in the way that it blocks apps from using the internet, but it's either doesn't work as well, or is smarter than Zonealarm.  I say this because it never bothered me for the usual suspects (Firefox, IE, telnet, ftp etc) but it did for unexpected apps like the Blizzard bittorrent "thing".

I use that, and a D-Link router/firewall, and I don't have any troubles (that I know of).  YMMV of course.

Windows XP comes with firewall software (http://www.microsoft.com/windowsxp/using/networking/learnmore/icf.mspx) -- you don't need SP2 though the SP2 version (http://www.microsoft.com/windowsxp/using/security/internet/sp2_wfintro.mspx) does have some enchancements that you can read about here. (http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2netwk.mspx#EFAA)

Kerio FTW.

Look for kerio-pf-214-en-win.exe

This is the old, free version so it shouldn't be naughty to google it down.  I swear by it, even more than the later (many still free) versions.

Of all the firewalls I used, this one was far and away the best:
http://www.agnitum.com/products/outpost/

Then I got lazy and let the NAT built into my router to do the job.

STAB

Are those towns or vocabulary words?

Welcome to Texas rurality.  I used to drive through here quite a bit. (http://www.earlytexasfamilies.com/towns/cutnshoot/)  Fun town.

I use the firewall in my router as well.

If you have such a thing, the only reason you need a software one on your machine is to prevent outgoing connections(a la zonealarm, where every app that wants to talk to the outside world must be okay'd), or if you feel your roommates/family will be remotely hacking into your PC.

The only possible function zonealarm style outgoing traffic prevention provides is vs. trojan spyware/controlware, where the naughty app logs onto a server somewhere(typically a private IRC channel) and says it's awake, so the script kiddie can go to the channel and command the hoard of machines they've compromised.  And really, those aren't as common as you'd think, assuming you aren't an idiot about what you download and execute on your machine, or are just incredibly unlucky.

IMHO, just run something like Spybot S&D or something every few months, or if your system feels odd, and save having to click 'yes, let my web-browser access the internet'  'yes, let my IM program access the internet' 'yes, let my online game access the internet' all the freakin time... especially the games and MMOs, due to patching making the 'always allow' practically worthless.

Alkiera.

Are there specific routers that have "firewalls?" How is this different from a regular nat router? I've heard the phrase "router with firewall" before and it always seemed puzzlingly redundant. Maybe it has to do with the breadth of config options...forwarding, triggering, etc...

*sigh*

Routers just route packets, but don't always include firewall software (most home routers do - but the ones you find in data centers most certainly do not). (And home routers are really combo switches+routers, but thats just getting nit-picky). Also, NATing is not a firewall. NATing just translates your internal IPs to the external IP and back. Ie: you request a connection to microsoft.com, and the data comes back on the external IP, the NATing then routes that information to your internal computer because that computer created the connection.

Firewalls tend to block all inbound (coming from the Internets) ports except ones you open. Ie: you have an FTP server running on your home computer, so you will want to configure it to allow inbound connections on port 25. But since most people don't run server software on their home computers, all ports *should* be blocked.

Note: Peer-to-peer applications like bittorrent require some ports to be open so that others can connect to you. You'd also need to open up the ports that your HalfLife server uses if you wanted people on the internet to be able to connect to it. With NATing, this means you also have to tell your firewall 'if a connection comes in on port 25, send it to computer XYZ'. Since no internal computer started the connection it wouldn't know which one to send it to, so you have to specify. This is called 'port forwarding'.

Clear as mud?

I had always assumed that when people refered to a router as a firewall they were referring to NAT, that requested data was transferred through the the requesting PC, and nonrequested data died at the router.  When I think about this now, I can see the need for actual firewall software within the router to offer any sort of protetion.

Actually if its linksys its probably 192.168.1.1,
Username: admin
Password: admin
Usually
 
But your dsl modem might be your router to....   If thats the case you will add alot more confusion.  Dsl modems in many cases are a router rather than a bridge and in some cases provide built in firewall type applications.  Keep in mind any of these are real real simple but for 99.9% of users its more than enough.  Confuse you yet?

If you really want more information just provid who does your dsl and what kind of modem and I can probably point you in the right direction.

Yeah, Netgear comes defaulted to 192.168.0.1 and thier default password is usually 'password' though I seem to recall having run into a Netgear that defaulted to 'admin'.

D-Link I think is on 192.168.1.x and I don't recall thier default password but I'm guessing it's also 'admin'.

Lately I've seen linksys equipment that has nothing for the username and the password is 'admin'.  YMMV.

Anyway, the important point is that you should change the user name and password to your router.  It's even more important if you are using wireless, even if you are using WEP.

The nature of how NAT works dictates that you will be safe from worms and script kiddies who will scan your ip block, for any connection you do not initiate will not be routed unless you specfiy otherwise.  It only will work for TCP/IP though, UDP is still open game, but it's much harder to break in with UDP anyway.

The only thing you will really gain with a 'router with firewall' is 'stateful packet inspection', the biggest benefit I can see for the home user is they can say 'I have a router with stateful packet inspection', cause it sounds like you know what you're talking about.

Just get any router and you'll be fine, if someone really wanted your data they would just steal your computer.

Oh and I'd recommend a Linksys WRT54G, as Linksys released the firmware so now all these cool custom hacks are out so you can increase the wireless output 900% or have a true firewall on the router.

I supplement my router with a software firewall to prevent trojans/etc from calling back out to the great outdoors.  It's just as critical to make sure something doesn't sweep your private data and send it up as it is to make sure you don't get DOS'd.

Yoknapatawpha County, Mississippi? (http://www.mcsr.olemiss.edu/~egjbp/faulkner/glossaryy.html#Yoknapatawpha)

It is right across the state line from Meahsexedupmahsistah County, Alabama.

I used to live near the Withlacoochee river...

Thinking about this more, I am pretty sure I have firewallyness somewhere on my ISP's end of things.  Unfortunately, I can never remember the IP address for getting to the admin site.  It's a 2Wire from BellSouth, and it's about time this one had an accident so I can get the new one.  I use the LinkSys because the 2Wire only has one ethernet hole.

I have historically been unmolested by internet junk, other than the typical spyware crap you get if you are not marginally careful.  I still run AdAware and Spybot, sometimes I turn on AVG and sweep for virii.  I never have any problems of the sort, but I thought I would ask.

Good to know that I can avoid learning something new about technology.  It pushes out the technical information that I need to keep for my job.

Heh, ipconfig came up with the answer.  I just pointed Firefox at my gateway.