Results 1 to 8 of 8

Thread: Batter up !!

  1. September 20th, 2001, 04:09 AM #1
    ngagpa
    ngagpa is offline
    Junior Member
    Join Date
    Aug 2001
    Posts
    11

    Batter up !!

    If one has the firewall security provided by a configured router, is there any benefit to running additional software; filters, and the like ...?
    Reply With Quote Reply With Quote
  2. September 20th, 2001, 04:16 AM #2
    Terr
    Terr is offline
    Old-Fogey:Addicts founder Terr's Avatar
    Join Date
    Aug 2001
    Location
    Seattle, WA
    Posts
    2,007
    Somewhat. Some routers have bugs in them, like the Ascend router problems. It wouldn't be totally wasted protection, no. I wouldn't depend on a router too much.

    Also, a router can't tell which program on your computer does what, so if you want to filter access based on the program, you need something independent. (Like ZoneAlarm or Tiny Personal Firewall.)
    [HvC]Terr: L33T Technical Proficiency
    Reply With Quote Reply With Quote
  3. September 20th, 2001, 04:18 AM #3
    ngagpa
    ngagpa is offline
    Junior Member
    Join Date
    Aug 2001
    Posts
    11

    re: soft or hard ...

    Thanx so much for the on the money reply there Terr - Too Good !!!
    Reply With Quote Reply With Quote
  4. September 20th, 2001, 07:23 AM #4
    B-Man
    B-Man is offline
    Junior Member
    Join Date
    Sep 2001
    Posts
    5
    I would be against router-only solutions because I don't believe they maintain state. I only say this since we use both inbound and outbound ACLs, which require me to write two rules.

    For instance: (syntax could be slightly off)
    permit tcp host a.b.c.d w.x.y.z eq 80 (inbound)
    permit tcp host w.x.y.z eq 80 a.b.c.d established (outbound)

    (inbound/outbound in relation to the routers perspective)

    If it was maintaining state, I wouldn't imagine that I would need the established rule since a state touble would know that I had initially initiated a request to the w.x.y.z address.

    Please don't hold me to that just yet, but I plan on trying to spoof a packet through one our routers next week to see if it show up in our firewall logs.

    B-Man
    Some people say never, I just say no.
    Reply With Quote Reply With Quote
  5. January 2nd, 2004, 06:11 PM #5
    Mr.Fatal
    Mr.Fatal is offline
    Junior Member
    Join Date
    Jan 2004
    Posts
    19
    So do you sugest that we use a router and a firewall?
    Reply With Quote Reply With Quote
  6. January 2nd, 2004, 06:15 PM #6
    Ennis
    Ennis is offline
    Banned
    Join Date
    Sep 2001
    Posts
    2,810
    You really shouldnt bump up threads this old. I doubt B-Man has posted in the like years that have passed since he posted that. Try making a new thread with your query.
    Reply With Quote Reply With Quote
  7. January 2nd, 2004, 07:23 PM #7
    meloncholy
    meloncholy is offline
    Member
    Join Date
    Feb 2003
    Posts
    53
    For MrFatal......Yes, router and firewall. Thats whats called layered security. Depends on what you're defending really. If its private data that is confidential (like banks, law firms, ect...) you will have that approach, where if its just a home computer, just a firewall or just a filtering router will do.
    Reply With Quote Reply With Quote
  8. January 3rd, 2004, 03:04 AM #8
    Mr.Fatal
    Mr.Fatal is offline
    Junior Member
    Join Date
    Jan 2004
    Posts
    19
    Thank you. I am sorry about posting in such an old topic. I see what you mean about it not being the best place to ask a question.

    In the future i will just start up the question again.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules