|
-
January 28th, 2010, 11:31 AM
#1
I would view it like this : A router needs to be configured to block traffic while a firewall needs to be configured to allow traffic. You can configure the router as a firewall but it tends to result in a fairly complicated configuration on the router. Also it can complicate troubleshooting network issues. Of course at the end of the day it will depend on the resources you have a vailable and the size of your network.
Cheers
Muracu
\"America is the only country that went from barbarism to decadence without civilization in between.\"
\"The reason we are so pleased to find other people\'s secrets is that it distracts public attention from our own.\"
Oscar Wilde(1854-1900)
-
January 29th, 2010, 08:30 AM
#2
Software firewalls are far from useless. A software firewall is important to protect you from what is inside the network. NAT routers only protect you from what's outside. If you have an infected machine on your network or are using wifi hotspots you need a software firewall to protect you from intrusions coming from inside the LAN.
-
January 29th, 2010, 09:07 PM
#3
Hi,
As said above, but please consider this:
If you don't have it and things go wrong YOU are fired..............otherwise you did "industry standards"....
There are some on this site who might advise otherwise, from their self-perceived high and mighty positions....... I have seen them crap out in court.......... probably flipping burgers now
Sysadmin is basically middle management at best , and most know jack sh1t about management at that, at least the cutthroat nature of some of it 
I can give you some case examples of your question.......... but I will leave them for the moment............
EDIT:
I realise that I probably sound somewhat defeatist, but I am a firm believer in "CYA" or "due diligence"............. whatever you like to call it.
I wouldn't like to explain to a CEO why I had decided against a firewall, when he has probably heard of those, but knows nothing about routers. It is a bit like the arguments for and against AV products.........sure, they may not do much for you, but they are an insurance policy for your job?
if the router is already closing the unnecessary ports?
That still leaves you with the issue of what traffic is allowed through the ports you need to keep open?
OK, some quality routers also act as a hardware firewall as well, and at the risk of sounding pedantic, I would describe them as combo products rather than just a router.
Some very good points were made about the "enemy within"...............typically your router and hardware firewalls are at the perimeter. You may decide to deploy internal firewalls in certain circumstances...............possibly in a school or college environment?
Last edited by nihil; January 30th, 2010 at 11:26 AM.
Similar Threads
-
By heatwave in forum AntiOnline's General Chit Chat
Replies: 4
Last Post: October 12th, 2012, 08:53 AM
-
By XTC46 in forum Site Feedback/Questions/Suggestions
Replies: 15
Last Post: August 24th, 2005, 07:52 PM
-
By mjk in forum Firewall & Honeypot Discussions
Replies: 6
Last Post: March 12th, 2004, 05:40 AM
-
By Zato in forum Firewall & Honeypot Discussions
Replies: 2
Last Post: February 1st, 2004, 01:01 PM
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
