Results 1 to 4 of 4

Thread: software vs hardware

  1. #1
    Senior Member
    Join Date
    Dec 2003

    software vs hardware

    is a software firewall better than a hardware one
    The people who are crazy enough to think they can change the world are the ones that do.

  2. #2
    Senior Member
    Join Date
    Nov 2003
    it depends on your requoirements like for personal use i can't afford a dedicated computer as firewall i would definately go for a software. but for corporate use where tnetwork traffic is more and more security is needed would advise a hardware one. depends on your requirements

    Hardware Vs. Software Firewalls

    Categorising Firewalls

    Software firewall application
    A software firewall application is designed to be installed onto an existing operating system running on generic server or desktop hardware. The application may or may not 'harden' the underlying operating system by replacing core components. Typical host operating systems include Windows NT, 2000 server or Solaris.

    Software firewall applications all suffer from the following key disadvantages:

    They run on a generic operating system that may or may not be hardened by the Firewall installation itself.
    A generic operating system is non-specialised and more complex than is necessary to operate the firewall. This leads to reliability problems and hacking opportunities were peripheral/unecessary services are kept running.
    Generic operating systems have their own CPU and memory overheads making software based firewalls slower than their dedicated hardware counterparts.
    If the software firewalls uses PC hardware as the host platform, then there may be additional reliability problems with the hardware itself. Sub-optimal performance of generic hardware also affects software applications bundled with their own operating systems.
    There is no physical or topological separation of the firewalling activity.

    Software firewall application and operating system
    Some software firewall applications include their own operating system and are designed to run on generic server or desktop hardware dedicated to the task of running the application. The operating system is invariably Linux based and is 'barebones', optimised for security and efficiency in processing network data.

    Dedicated hardware Firewall
    A dedicated hardware firewall is a software firewall application and operating system running on dedicated hardware. This means the hardware used is optimised for the task, perhaps including digital signal processors (DSPs) and several network interfaces. There may also be special hardware used to accelerate the encryption/decryption of VPN data. It may be rack mounted for easy installation into a comms' cabinet.

    We recommend dedicated hardware firewalls as they offer several key advantages over software applications:

    Dedicated hardware is typically more reliable.
    Hardware firewalls are simpler, hence more secure.
    Hardware firewalls are more efficient and offer superior performance, especially in support of VPNs.
    The firewalling activity is physically and topologically distinct .

  3. #3
    For a home user who uses the net to do research/check email, etc, i would recommend a software firewall. I would do this because it is simply more practical for its application -- there is no real need to splash out on a dedicated hardware firewall for what i would deem a "non target".

    However, if you run an IRCD/Other server, work as part of a NOC/whatever, i would say a hardware firewall hands down. The website w0lverine posted gives several reasons for this.


  4. #4
    Senior Member
    Join Date
    Dec 2003
    thanks man
    The people who are crazy enough to think they can change the world are the ones that do.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts