Results 1 to 10 of 10

Thread: Suggest some hardware firewall for my Windows home computer

  1. #1
    HappyAndyK's Avatar
    HappyAndyK is offline Site Administrator
    Join Date
    Jun 2008
    Posts
    7,559

    Question Suggest some hardware firewall for my Windows home computer

    I am thinking of buying a hardware firewall for my home PC, as a matter of additional security.

    Questions:

    1. Do I, as a home user need one? Should I go ahead? I started thinking of it, since I now have a always-on fast broad band connection - so I dont mind spending if it means an additional layer of security.

    2. If yes, which one would you suggest?



    3. Shyam suggested TZ 100 Network Security Appliance Series - SonicWALL, Inc. ? Any experience or information about it?

    Inputs most welcome.

    Thanks.

  2. #2
    whs's Avatar
    whs
    whs is offline Gold Member
    Join Date
    Oct 2008
    Posts
    1,421

    Default

    I have a firewall in my Netgear router. Up to now that did suffice.

  3. #3
    DustinH's Avatar
    DustinH is offline Senior Member
    Join Date
    Aug 2008
    Location
    Boardman, OR
    Posts
    243

    Default

    If you have a space PC, look into pfSense, Monowall, Smoothwall or other Linux/BSD based firewall. A TON of options, can use hardware that may just be sitting around, pfSense has some great traffic shaping capabilities. Cost is minimal if you already have the hardware (free in most cases). GREAT firewalls, plus there are a lot of plug in's if you feel the need. They are easy to set up, too. Once set up, you'll never touch it again if you don't want to.

    Downside: power consumption. PC's consume a lot more power than the dedicated hardware (SonicWall, Cisco ASA, etc.).

  4. #4
    HappyAndyK's Avatar
    HappyAndyK is offline Site Administrator
    Join Date
    Jun 2008
    Posts
    7,559

    Default

    Thanks folks, will look into the suggestions. I do not have any spare PC lying around so I guess Im going to have to look for some dedicated fw hw only.

  5. #5
    roraniel's Avatar
    roraniel is offline Gold Member
    Join Date
    Oct 2008
    Location
    Pinehurst, NC
    Posts
    860

    Default Test you system

    Have you tested your system for stealthiness?

    I use this tool. https://www.grc.com/x/ne.dll?bh0bkyd2

    If you test all stealth is another firewall (software or hardware) really necessary?

    I have firewalls in my modem and router with all devices behind the router and I have Windows Firewall on and I test all stealth. I suspect most security conscious people have a similar setup so why would a HW firewall be needed?

  6. #6
    hackerman1 is offline Senior Member
    Join Date
    Dec 2008
    Location
    Sweden
    Posts
    1,525

    Default

    Quote Originally Posted by roraniel View Post
    Have you tested your system for stealthiness?

    I use this tool. https://www.grc.com/x/ne.dll?bh0bkyd2

    If you test all stealth is another firewall (software or hardware) really necessary?

    I have firewalls in my modem and router with all devices behind the router and I have Windows Firewall on and I test all stealth. I suspect most security conscious people have a similar setup so why would a HW firewall be needed?
    hmmm....
    have you tested OUTGOING connections with fx. Comodo´s Leak Test ?

  7. #7
    HappyAndyK's Avatar
    HappyAndyK is offline Site Administrator
    Join Date
    Jun 2008
    Posts
    7,559

    Default

    Quote Originally Posted by roraniel View Post
    Have you tested your system for stealthiness?

    I use this tool. https://www.grc.com/x/ne.dll?bh0bkyd2
    I am using Kaspersky Internet Security.

    Port 554 was open. But I disabled Home Group and that seems to have resolved the issue.

  8. #8
    hackerman1 is offline Senior Member
    Join Date
    Dec 2008
    Location
    Sweden
    Posts
    1,525

    Default

    Quote Originally Posted by HappyAndyK View Post
    I am using Kaspersky Internet Security.

    Port 554 was open. But I disabled Home Group and that seems to have resolved the issue.
    have you tested OUTGOING connections with fx. Comodo´s Leak Test ?

    that will show you how good Kaspersky really are....

  9. #9
    HappyAndyK's Avatar
    HappyAndyK is offline Site Administrator
    Join Date
    Jun 2008
    Posts
    7,559

    Default

    I did. Everytime I run that tool, KIS asks me if I should allow or deny for almost every test. If I say Allow, then in the report I get a negative mark. If I say Deny, then the tool just shuts down. So I am not sure of the exact results of that tool...

  10. #10
    hackerman1 is offline Senior Member
    Join Date
    Dec 2008
    Location
    Sweden
    Posts
    1,525

    Default

    Hi !

    Andy: well, if you have to say "Allow" on every test, then it´s OK, Kaspersky is doing it´job.
    It´s normal that CLT stops i you select "Deny" on a test, so just make sure that you need to say "Allow" on every test....

    I´ve tested Kasperky´s firewall several times previously, and those results vere not good, look at my old posts....
    So if Kaspersky now really passes CLT, then they have improved it...
    Anyway, there still seems to be a need for further improvement, take a look at Matousec´s "Proactive Security Challenge 64":

    Products tested against the suite with 110 tests

    Product Product score Level reached Protection level Recommendation
    Comodo Internet Security Premium 5.9.219863.2196FREE 94 % 11 Excellent GET IT NOW!
    Outpost Security Suite Pro 7.5.2.3939.602.1809 86 % 11 Very good GET IT NOW!
    Outpost Security Suite Free 7.1.1.3431.520.1248FREE 71 % 11 Good Not recommended
    VirusBuster Internet Security Suite 4.1 71 % 10 Good Not recommended
    Jetico Personal Firewall 2.1.0.10.2451 59 % 10 Poor Not recommended
    Privatefirewall 7.0.25.5FREE 56 % 9 Poor Not recommended
    ESET Smart Security 5.2.9.1 51 % 9 Poor Not recommended
    ZoneAlarm Extreme Security 2012 10.1.079.000 43 % 7 Very poor Not recommended
    ZoneAlarm Free Antivirus + Firewall 10.2.064.000FREE 34 % 6 Very poor Not recommended
    Kaspersky Internet Security 2012 12.0.0.374 28 % 5 None Not recommended
    Total Defense Internet Security Suite 8.0.0.87 21 % 4 None Not recommended
    avast! Internet Security 7.0.1456 15 % 3 None Not recommended
    Dr.Web Security Space 7.0.0.10140 11 % 2 None Not recommended
    Norton Internet Security 2012 19.5.0.145 10 % 2 None Not recommended
    Bitdefender Total Security 2012 15.0.36.1530 9 % 2 None Not recommended
    TrustPort Total Protection 2012 12.0.0.4860 8 % 2 None Not recommended
    Norman Security Suite PRO 9.00 6 % 2 None Not recommended
    PC Tools Internet Security 2012 9.0.0.898 6 % 2 None Not recommended

    Webroot SecureAnywhere Complete 2012 8.0.1.165 6 % 2 None Not recommended
    eScan Internet Security Suite 11.0.1139.1150 5 % 2 None Not recommended
    FortKnox Personal Firewall 8.0.205.0 5 % 2 None Not recommended
    G Data TotalSecurity 2012 22.1.0.0 5 % 2 None Not recommended
    ThreatFire 4.7.0.53FREE 5 % 2 None Not recommended
    Avira Internet Security 2012 12.0.0.832 4 % 1 None Not recommended
    Ad-Aware Total Security 21.1.0.30 3 % 1 None Not recommended
    AVG Internet Security 2012.0.1890 3 % 1 None Not recommended
    BullGuard Internet Security 12.0.218 3 % 1 None Not recommended
    F-Secure Internet Security 2012 12.44.110 3 % 1 None Not recommended
    K7 TotalSecurity 2012 12.1.0.119 3 % 1 None Not recommended
    McAfee Total Protection 2012 11.0.623 3 % 1 None Not recommended
    Panda Global Protection 2012 5.01.00 3 % 1 None Not recommended

    Rising Internet Security 2011 23.00.55.71 3 % 1 None Not recommended



    Very
    interesting reading...

    A tip: You can use Comodo´s HIPS (Defence+) in combination with another firewall, just turn off Comodo´s firewall.
    Personally i´m using Windows Firewall & Comodo Defence+, which works well together.

    But we should perhaps continue with that subject in a new thread ?
    In fact i have already planned to post about Matousec´s new test, which reveals that many Firewalls have problems on 64-bit systems....

    Hmmm, perhaps time for a post on TWC ?...
    I´ll PM you later...
    Last edited by hackerman1; 23rd July 2012 at 10:38.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22