Firewalls

[Computernerd22]

This is my tutorial by me Computernerd22 on Firewalls. It teaches you about firewalls, types of firewalls, and how these can influence your ability to surf. Please keep in mind this is more for the 'Novice' user.

Key Concepts

Software Firewall

Hardware Firewall

Disable

FTP Test

Error 10065


What does this tutorial Cover?

What is a firewall?

What are the types of firewalls?

How does a firewall work?

What protection does a firewall offer?

How can a software firewall affect my internet connection?

Test if a firewall is blocking internet access?


What is a firewall?

A firewall is a system designed to prevent unauthorized access to or
from a computer or private network. A firewall can be implemented in both
hardware and software, or a combination of both. They are frequently used to
prevent unauthorized Internet users from accessing computers or private
networks connected to the Internet. All messages entering or leaving the
computer or private network pass through the firewall, which examines each message
and blocks those that do not meet the specified security criteria.


What are the types of firewalls?

Software (or Personal)

Hardware Firewall (physical device)



Software (or Personal)

A software firewall is an application that has been installed on the
computer. The firewall will inspect internet traffic and traffic generated from
the pc intended for the internet.

Popular Vendors:

Norton

ZoneAlarm

McAfee

Black Ice


Hardware Firewall

A hardware firewall is a separate physical device. In general, a
hardware firewall can inspect internet traffic faster and more in-depth than a
software firewall.

Popular Vendors:

Cisco

WatchGuard

Checkpoint

How does a firewall work?

Firewalls use one or more of following three methods to inspect

internet traffic flowing in and out of the PCs internet connection:

Packet Filtering – Internet traffic is compared against a list of
rules. If the traffic matches a rule, then the traffic is allowed. If the traffic
does not match a rule, then the traffic is discarded.

Proxy Service - Information from the Internet is retrieved by the firewall and then sent to the requesting system and vice versa.

Stateful Inspection - A newer method that doesn't examine the contents of each packet but instead compares certain key parts of internet traffic to a database of trusted information.

What protection does a firewall offer?

One of the best things about a firewall from a security standpoint is
that it stops anyone on the outside from logging onto your computer.
A firewall can block the following type of traffic:

Remote login

Application

SMTP session hijacking

Operating system bugs

Denial of Service

E-mail bombs

Macros

Viruses

Spam

Redirect Bombs

Source Routing

HTTP (Ability to view Web Pages!)

HTTPS (Ability to view secure Web Pages!)


How can a software firewall affect my internet connection?

A software firewall can block the following:

Access to secure websites

Internet traffic

Prevent applications from reaching the internet, Ex. Email Client
(Outlook, Outlook Express)

Test if a firewall is blocking internet access?

Access a DOS Prompt

FTP Test


Test if a firewall is blocking internet access? How?

Click on Start, Select Run, Type Command or cmd, Click OK button
At the DOS prompt, type FTP 127.0.0.1 (or FTP “modem’s LAN
Address”) Then hit the ENTER key on the keyboard.

Now, If you receive a socket error 10065, it means that a software
firewall application may be blocking traffic.

But If you receive an Unknown Error Number (Windows XP), this is
normal. If you receive a socket error 10061 then a firewall is not blocking
traffic. Just type "bye" then hit the ENTER key to return
to a normal prompt. Next type Exit and press ENTER key.

Please Remember: Even though disabled, the firewall may still be 'active' in the background.

I hope you enjoyed my tutorial on Firewalls. All feedback is appreciated. Computernerd22

[MrBabis]

I know little about firewalls yet. But home users needs firewalls and extern firewalls are good to use as I know. But does it enough to have extern firewall, software AV and Antispy, as standard for home users?

[Computernerd22]

But does it enough to have extern firewall, software AV and Antispy, as standard for home users?

Having a external firewall and AV software and ANTI-Spyware is a good start but I would also recommend The following:

Make sure your OS is fully up-to-date. (has all critical patches, system updates etc...)

Use Encryption on your system! For various obvious reasons. NTFS uses EFS for Windows NT NT, 2000, XP, 2003, ALSO to secure data.

Use strong passwords on your system.

Disable ALL unneccessary services running on your PC. Two reasons, 1.) Takes up system resources and #2.) Any unneccessary hole is a hacker hole in your PC. Hacker hole = entry into PC. (With proper software f course )

Disable all guests accounts.

Set your OS/ROUTER/FIREWALL to block ICMP echo requests. Hope this helps, Computernerd22

[MrBabis]

Encryption can be a problem if Vir/Spy become encrypted, difficult to find and remove with BartPE.

Thx for good recommendations

[Tiger Shark]

I think you need to read this, specifically, items numbered two and five.

Just a thought.....

[d0ppy]

Why not make it less of a description of how firewalls work, and put more emphasis on how to use and admninister them.

Perhaps a tutorial specifically on administration of a single firewall, ie... Kerio, TinyPF, Norton, whatever.

Just a thought.

[foxyloxley]

Make it Sygate [please]

[Galdron]

Why not just post a link to one of thousands of web based articles describing the same noob information you just spent time typing out???

Not rippin on you Nerd but this info is for School children or the elderly.