free firewalls and ICS
Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: free firewalls and ICS

  1. #1
    Junior Member
    Join Date
    Apr 2004
    Posts
    4

    free firewalls and ICS

    first post, so hello to you all.

    after searching thru the forums ive found the most highly reccomended free personal firewalls seem to be Sygate, Kerio and Outpost. after trying Sygate i found it didnt pass the true stealth analysis on the gibson research site, altho im unaware of how important this really is (it left 1 port open), and if i could configure it so that it would. I thought id try out the other 2, but after reading about their features on the developers sites, noticed that aparantly niether support ICS (internet connection sharing). I need and use ICS on my 2 computer home lan, as i dont have a router, and after having a lot of problems with ICS and ZoneAlarm i decided a change was in order. my question is: do Kerio and/or outpost work with ICS as ive read on these forums, if not, how can i properly configure sygate to be secure as possible (direction to another post is fine). Otherwise, should i be looking at a different firewall from these?

    thanks in advance

  2. #2
    Macht Nicht Aus moxnix's Avatar
    Join Date
    May 2002
    Location
    Huson Mt.
    Posts
    1,752
    Give the Kerio firewall a shot. It has network support and is highly configureable.
    While using IRC, the shields up firewall test showed 1 open port the first time I ran it, but on subsequent scans, it came back as fully steath. In other words, it learned. Perhaps the sysgste firewall would do the same thing...did you try it a second time?
    \"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
    Author Unknown

  3. #3
    Senior Member
    Join Date
    Mar 2004
    Posts
    111
    my question is: do Kerio and/or outpost work with ICS as ive read on these forums, if not, how can i properly configure sygate to be secure as possible (direction to another post is fine).
    You don`t use a router for your home lan?

    What is your set up?

    A router may be a nice investment. You can get a basic 4 port dsl/broadband router w/nat firewall cheap.

    You may want to give these forums a try...The only one i have experience with is Outpost forums. But they will probably work well for specific questions you have.

    Sygate forums

    Outpost forums

    Kerio forums
    NORML

    Signature image is too tall!

  4. #4
    Junior Member
    Join Date
    Apr 2004
    Posts
    4
    thanks for the replies.

    moxnix: Well, if kerio has network support then ill give it a go. i did read about "adjustive behaviour" (i think thats it) on the GRC webpage and ran a few scans but it always had port 1025 open. no idea why.

    Atticus: i should be getting a router w/ firewall given to me soon by a friend whos getting a new 1, but the wait is indefinite and i figure i should protect myself in the meantime. thanks for the links im sure they will come in handy configuring, as will a thread i read earlier... wish i could remember who it was by to give credit.

    thanks again

  5. #5
    Junior Member
    Join Date
    Apr 2004
    Posts
    14
    If you have an old computer around, you might want to look into NAT (network address translation) firewall/routers, the software is free, the hardware can be anything thats 486DX2-66 and up, as little as 16MB RAM. im using a coyote distro atm, but there are lots out there, for cable modems, PPPOE DSL (ugh), etc... just an old machine, 2 ethernet cards, and a little time...

  6. #6
    Junior Member
    Join Date
    Apr 2004
    Posts
    4
    i installed the latest verion of Kerio and configured it according to this tutorial by pooh sun tzu, but it still left port 1025 open after concurrent tests... whats worse is that with the internet gateway option in Kerio enabled, i got back poor resulsts, with many open and closed ports, only a few in stealth.

    so i decided to try sygate again, and after testing it on both grc and the sygate site, found it still had port 1025 open, and a few ports closed rather than in stealth.

    even the built in windows xp firewall stealths every port (and always works fine with ICS, but is crappy in other ways), as does Zonealarm which i was using previously (but also kept stuffing me round). what am i doing wrong? do i have to learn to block ports manually using rules etc, or should i just go back to zonealarm, or try something else?

    thanks again

    edit: after searching a bit on google i found that a fair amount of people think of stealthed ports as overrated, and that your just as safe with closed ports. this still doesnt help the Kerio/ICS problem, but means ill just have to see how well Sygate works with my LAN... maybe ill have to leave that little bastard port 1025 open afterall... or close it manually, how can i do that if its the best option?

  7. #7
    Antionline Herpetologist
    Join Date
    Aug 2001
    Posts
    1,165
    While using IRC, the shields up firewall test showed 1 open port the first time I ran it, but on subsequent scans, it came back as fully steath.
    That's because your IRC client runs an IDENTD server.

    Cheers,
    cgkanchi
    Buy the Snakes of India book, support research and education (sorry the website has been discontinued)
    My blog: http://biology000.blogspot.com

  8. #8
    Senior Member IKnowNot's Avatar
    Join Date
    Jan 2003
    Posts
    792
    edit: after searching a bit on google i found that a fair amount of people think of stealthed ports as overrated, and that your just as safe with closed ports....
    I’ll be brief on this one ( sigh from AO members )

    “Blocked” means they can’t get in

    “Stealthed” means it does not exist ( as far as external computers know )

    The difference is a blocked port may send a replay to let a computer know you don’t accept anything on that port, stealthed means they won’t know that port exists at this IP.

    Theory being, if a computer finds all ports “stealthed” it does not know you exist, if it finds a “blocked” port it now knows you exist and may want to investigate further, even though it can not get through this port.
    " And maddest of all, to see life as it is and not as it should be" --Miguel Cervantes

  9. #9
    Priapistic Monk KorpDeath's Avatar
    Join Date
    Dec 2001
    Posts
    2,628
    Most free firewalls don't work with ICS ( for obvious reasons), I'd just pony up the money for the pay to play version of outpost or others....or...I'd pony up the cash for a lil' linksys/d-link/etc etc firewall/switch to share your inet connection. Either way it should be around 40 bucks.

    peace

    P.S. Sometimes it is just better AND easier to save the money and buy the product...that way everybody wins. You don't get headaches and they get a little bit of your money.
    Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
    - Samuel Johnson

  10. #10
    Junior Member
    Join Date
    Apr 2004
    Posts
    4
    i did understand the difference, but thanks anyway. the alternative theory with stealthed firewalls is that they are like a black hole on the internet, with data going in, but none coming out, meaning someone skilled can see theres something there anyway... but this isnt the discussion i was meaning to get into, and i seriously doubt any skilled hacker would target me anyhow... better safe than sorry tho, and its been good to learn a bit about comp security. ill just use sygate till i get my hardware fw/router... thanks for all responses

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides