Dual layer firewall system :)

RejZoR · September 1, 2004, 11:36am

I just established a very powerful firewall system.
Its especially interesting for all those that think that Windows firewall is unsecure because it lacks outbound protection and are searching for low overhead firewall.

Here is the solution

Outpost 1.0 + Windows Firewall (i use SP2 ICF)

Outpost has certain problems with Stealthing ports but provides program control and outbound protection,Windows Firewall provides great inbound protection and incredible port Stealthing capability.
When using these two together you get incredible dual layer protection with minimal possible overhead.
Also there is no communications problems,because eMule runs with High Id (communications are not limited in any way),also all other programs run without problems.

You can get Outpost 1.0 Free here:
www.agnitum.com

system · September 1, 2004, 11:40am

I got a quadruple layer protection

Kerio
www.ntsvcfg.de
windowsupdates
Brain 1.x
;D ;D

Eddy · September 1, 2004, 11:42am

Better is a router/hardware firewall and a software one on the comp. ;D

Even better is puling the connection plug out ;D ;D ;D

ps: ICF isn’t in SP2, it is called Windows Firewall.

RejZoR · September 1, 2004, 11:48am

I know,i was just to lazy to write full name. But we all know what ICF means

I’d use Kerio instead,but its far from being so light on resources as Outpost is and its lame with application rules,because it asks for each and every different IP/Port even if the same application (already Allowed) tries to connect.

system · September 1, 2004, 11:51am

Imho even with Kerio 4.x, you can set/edit the application-rule to include all IP’s/ports, right … ?

???

RejZoR · September 1, 2004, 11:56am

As far as i was testing Kerio,not. But i can be wrong…

system · September 1, 2004, 4:19pm

Is outbound really that important though? I mean, if you run frequent trojan scanners, anti virus, etc. and have something blocking inbound (WinFirewall) I think you should be ok.

DavidR · September 1, 2004, 6:36pm

Unless you can 100% guarantee your system will not catch a new trojan infection, then it is prudent to have outbound protection.

After all do you want to take the risk of your username/password, account details, etc. in the hands of some fraudsters/criminals organisation, don’t wory about outbound protection.

system · September 1, 2004, 9:05pm

2 things

i thought if you have 2 firewalls, they conflict?
Why have 2 when u can just get in/outbound protection firewall all in one.

–lee

system · September 1, 2004, 9:06pm

Rejzor, why not just use windows firewall and an appwall? Like one of the ones I listed here

http://forum.avast.com/index.php?board=1;action=display;threadid=6858

Low overhead, no probs with p2p’s

Just curious?

RejZoR · September 2, 2004, 12:56pm

@lee16
After some tests i found out that Windows Firewall has the best inbound protection of all firewalls. Especially in field of Stealthing ports where Kerio fails. Outpost Firewall 1.0 has some problems with inbound,but it has a good outbound protection and provides max info possible for all connections that go through machine.

I can track where did some program connected,through which port/protocol,i can track all FTP/HTTP/HTTPS URLs,track sent/recived data for each program.

These two firewalls certanly work together,because all ports are Stelthed at all times,programs always ask for outbound and it can also detect changes in program. There was also no conflicts with any program that i use,so i can say its works perfectly.

bob3160 · September 2, 2004, 4:34pm

RejZoR
Does the Windows Firewall beat ZA on inbound stealth and protection?

RejZoR · September 2, 2004, 6:00pm

Inbound is the same i belive. ZA has never had any Stealthing problems.

system · September 2, 2004, 6:40pm

How do you rate syagate’s inbound protection compared to ZA and Windows firewall.

In fact would you say the outbound is just as good as outpost/ZA aswell?

–lee

system · September 3, 2004, 8:39am

from RejZoR

Inbound is the same i belive. ZA has never had any Stealthing problems.

So, if ZA stealths inbound so well and has outbound protection, what more is needed? Why make it more complicated than need be? ???

RejZoR · September 3, 2004, 11:59am

P2P. ZA is death to such applications. And its memory usage while using P2P is enormous.

bob3160 · September 3, 2004, 12:43pm

RejZoR
I’m using ZA with ICQ, MSN Messenger and Yahoo Messenger without problems. I don’t know about the resource issue.

RejZoR · September 3, 2004, 1:19pm

These are Instant Messagers and not P2P software (altough they do connect in the P2P way,but this is not the issue).
P2P software uses hundreds of connections which kills the ZA as they kill cheap hardware routers/firewalls.

bob3160 · September 3, 2004, 1:30pm

RejZoR

P2P software uses hundreds of connections which kills the ZA as they kill cheap hardware routers/firewalls.

The only one in that catagory that I’ve ever used was Shareaza and I’ve never experience any prob. with it.

RejZoR · September 3, 2004, 1:36pm

I was talking about eMule. ZA rejects amjority of connections and gathers huge garbage leak in its modules. Sometimes even simply dies and terminates/blocks all traffic. Its a very good firewall for normal web usage,but for any kind of P2P,it simply sucks. Even if you get High ID connection you get 2x less sources then with other firewalls.

Dual layer firewall system :)

Announcements