Network Security guide for the home or small business network – Part 2 – A Software Firewall



Do I really need a hardware firewall? I’m running XP Service Pack 2 with the built in firewall? (or norton, or zonealarm?) Well, personal firewalls (the name that software firewalls go by) are good for a great many things that hardware firewalls AREN’T. They do have their limitations though and I’ll try to cover those in this post. Of course, a software firewall is running on the pc that you use to connect to the internet and one of the functions it serves is to “close the doors and windows” or those open ports that a computer can listen for connections on.


The disadvantage of a personal firewall is a very big one. It’s VERY susceptible to being disabled. I had a user once that I had setup with a personal firewall and one time I visited to investigate a possible virus and noticed that the firewall wasn’t running. I was told that “something popped up asking me to turn it off, so I did.” I wondered if a thief came up to the door and asked them to quit using the deadbolt if they would do so. Unfortunately, it’s essentially the same thing. However, let’s say you get a malicious attachment in email that you click, that can disable your firewall. Or, the more mundane breach, a program ran and tried to act as a server and you said “ok”, then you have open ports listening for connections.

Now, you might be thinking software firewalls are useless…. but no they’re not. They do have their place. One very useful aspect is their ability to control programs access to the internet and notify you when a program has changed or requests access to the internet for the first time. The only problem is that you have to have an idea of what programs may need to use the internet to be able to make a good judgement. Zonealarm was typically a “noisy” firewall in the sense that if you opened Internet Explorer it would say “Iexplore is attempting to access the internet. Is that ok?” etc. Like I said, you will need to learn what is normal to make good decisions here. Mail programs, network utilities, web browsers all typically need to access the internet. They RARELY need to act as a server (actually listen for inbound connections).

Are personal firewalls essential? Let me put it this way. You should have a hardware firewall. If you don’t, then a software firewall can “make do” until you get a hardware firewall. Once your network is protected by a true hardware firewall, software firewalls can still be useful. (Allowing/disallowing programs from accessing the network/internet and protecting pcs from other machines on the internal lan.) If you have a small LAN with trusted access (and no wireless) it may be less of a priority to keep a software firewall. They can make networking machines a bit more tempermental. Also, if they don’t “remember” that iexplore (internet explorer) and the like are allowed to access the internet they can be pesky and tedious.

On a larger LAN, or network with laptops coming and going from home/other networks and with possible public wireless access or other groups of untrusted access… YES use software firewalls.

Don’t install and use just anything that pops up from an ad online. Read (not just from their site, but search for the name of the product and find third-party information.) I once de-installed a program that claimed to be a firewall but in fact had left dozens of ports open to the outside world. Also it’s worth keeping in mind how “noisy” a firewall is. Will it ask for users to answer a question everytime they start a program or will it be fairly quiet?

Related Posts

Blog Traffic Exchange Related Posts
  • How to Remove Antivirus PC 2009 | Antivirus PC 2009 Removal Guide Antivirus PC 2009 is a rogue antivirus application that is installed through malware and other nefarious means. Once installed on your system it will complain about security problems on your system. It will scan and claim that there are viruses on your computer. Like most all of these rogue antivirus......
  • How to Remove KeepCop | Keep Cop Removal Guide KeepCop is yet another of those rogue antivirus applications that seem to be such a plague on computer users today. These rogue security applications usually installed without permission, or by means of trickery claiming to be a video codec or flash player update. Further they will start out on your......
  • Network Security guide for the home or small business network - Part 20 heterogeneous networks One thing I've already mentioned in this serious is using alternative programs like Mozilla Firefox instead of Internet Explorer, or Thunderbird, Eduora instead of Outlook Express. Even if you're not using alternative software as your primary web browser, email program there are advantages to having networks with mixed software, operating......
Blog Traffic Exchange Related Websites
  • Marketing Advice: Twitter Followers Twitter is becoming among probably the most common social websites around the planet. Component with the Twitter appeal is every single entry, or tweet, is limited to 140 characters. This helps make making use of the service quite interesting and to the point. Getting persons observe you usually means having......
  • D-Link Announced 2 new 2-Bay Network Storage Devices Two new Network Storage Devices from D-Link D-Link today announced that its ShareCenter® 2-Bay Network Storage devices, the DNS-320 and DNS-325, are now available. Building off of the successful DNS-321 and DNS-323, the new DNS-320 and DNS-325 provide centralized storage, enabling consumers to easily share documents, files and digital media......
  • Most Popular and Useful Security Apps for a Smart Phone The following is a post from staff writer Crystal at Budgeting in the Fun Stuff, where she writes about finding the balance between paying your bills, saving for your future, and budgeting in the fun stuff along the way. Buying a smart phone is a major investment because you spend......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Leave a Reply

You must be logged in to post a comment.


Switch to our mobile site