Author Topic: Firewall with Avast  (Read 19945 times)

0 Members and 1 Guest are viewing this topic.

Online DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 88896
  • No support PMs thanks
Re: Firewall with Avast
« Reply #15 on: April 14, 2005, 12:29:20 AM »
Quote
The magazines says this is the best solution but I see ALL the PCs in my workplace (more than 4500!!!) are infected

Unfortunately they don't tell you the full story.

A hardware firewall provides great inbound protection but most provide zero outbound protection, for that you still need something to plug that gap and for most that means running a software firewall.

Many can't use a hardware firewall, such as myself as I'm on a dial-up connection. As far as I'm aware there is no router, come firewall, come dial-up modem to act as a hardware firewall.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.2.6105 (build 24.2.8918.824) UI 1.0.799/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48523
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Firewall with Avast
« Reply #16 on: April 14, 2005, 02:24:11 PM »
Quote
that ZA is working bad with avast.
Worst: ZA support is useless... 
Not in my opinion and I use it. ;D

[quotemaybe the best solution is a HW firewall: 110-150 €... for life. Or not?]
Quote
The best solution is one of each. IMHO :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Firewall with Avast
« Reply #17 on: April 14, 2005, 09:03:21 PM »
Fair comment, Lee. (Re. Zone Alarm userfriendlyness.)

That's why I switched to Kerio,  'tis true.

I've never tried Sygate, but the reviews I've seen don't describe it as user friendly: in fact they say 'suitable for anyone who knows their way round an advanced firewall...too complicated for anyone who just wants to protect their computer and get on with their lives...competent software for experts on a budget.' Computer Shopper. And 'Our only concern is the interface, which won't suit novices.' Personal Computer World.

With reviews like that, I recommend ZA with its faults before Sygate, but recommend Sygate to experts like yourself.  ;)

     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48523
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Firewall with Avast
« Reply #18 on: April 14, 2005, 11:09:43 PM »
Despite the lack of support, I still find ZA to be a very effective and easy to use Firewall. :)
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

galooma

  • Guest
Re: Firewall with Avast
« Reply #19 on: April 15, 2005, 01:41:27 AM »
I have recently switched from ZA to Kerio pf and am happy with its performance and ease of setup.
Having read this and numerous other threads on the subject I decided to have a closer look a KPF and how it works. Can any other KPF users interpret this log report and confirm what i suspect in that there are 2 instances of active trojans sailing right by my hardware firewall as if it wasnt there and although caught by KPF ,how many other unidentified new ones are out there sailing by as well?

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Firewall with Avast
« Reply #20 on: April 15, 2005, 10:05:31 AM »
The two attacks may well have been blocked by Kerio's intrusion detection feature. Have you clicked the 'Find out more' link? What did it say?

Edit: You haven't included the bottom of your screen, but you appear to be looking at the intrusions log.



From the Kerio website:

Intrusion detection
Potential intruders use various techniques to find out whether a targeted computer is vulnerable to attack. These techniques vary from simple port scanning to more elaborate exploits. Kerio Personal Firewall has a built-in intrusion detection system that identifies and blocks most known attacks.


The intrusion detection feature seems to be above and beyond the firewall feature, so a firewall will not block these probing techniques.
« Last Edit: April 15, 2005, 10:26:44 AM by FreewheelinFrank »
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Spyros

  • Guest
Re: Firewall with Avast
« Reply #21 on: April 15, 2005, 10:16:52 AM »
I've never tried Sygate, but the reviews I've seen don't describe it as user friendly: in fact they say 'suitable for anyone who knows their way round an advanced firewall...too complicated for anyone who just wants to protect their computer and get on with their lives...competent software for experts on a budget.' Computer Shopper. And 'Our only concern is the interface, which won't suit novices.' Personal Computer World.

With reviews like that, I recommend ZA with its faults before Sygate, but recommend Sygate to experts like yourself.  ;)


FreewheelinFrank,
Sygate was the first firewall I ever used. I even installed it to other "newbies". None of them told me they found it difficult to use. Sygate has only one screen, while ZA has four (if I remember correctly). I switched to ZA when Sygate had some problems with avast's webshield (before making a short stop to use McAfee Firewall).
Bottom line: if anybody bothers to read the Help File (like I did), Sygate is very easy. It could become more difficult if you want to "tweak" it more - then you have to be an expert.

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Firewall with Avast
« Reply #22 on: April 15, 2005, 10:40:22 AM »
Spyros,

I'm only reporting the reviews I read of Sygate while looking for a free firewall: they certainly put me off trying it!

I certainly bow to your opinion if you have actually tried it, because I haven't!

The only thing that worries me about the free version of Sygate is that it doesn't have the intrusion detection feature of the pay version: the free version of Kerio does, and it seems to block a lot of bad stuff (see Cloussou's posting previously.)

respect. :)
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Spyros

  • Guest
Re: Firewall with Avast
« Reply #23 on: April 15, 2005, 10:56:36 AM »
The only thing that worries me about the free version of Sygate is that it doesn't have the intrusion detection feature of the pay version:

Yes, I agree with you...
But still, Kerio seems difficult for me at least, because of the rules. Rule-based firewalls seem more difficult to new users who just want it to work "right out of the box". And if they are not configured right, they might cause more trouble than good...
Anyway, I don't know much about firewalls, I believe Arup is the expert in this forum  ::)

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Firewall with Avast
« Reply #24 on: April 15, 2005, 11:14:49 AM »
These are my Kerio rules:



!

You can create advanced rules in Kerio 4, but it doesn't require you to.

I believe Kerio 2 might have been different, but Kerio 4 doesn't require you to create any rules (appart from which applications you want to allow to use the internet, if you choose to control outbound traffic) so you don't need a degree in network computing to use it!
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Spyros

  • Guest
Re: Firewall with Avast
« Reply #25 on: April 15, 2005, 11:20:28 AM »
I believe Kerio 2 might have been different, but Kerio 4 doesn't require you to create any rules

Hmm, interesting... I have only used the 2.15 version, which was rule-based. I will keep my eye on the new version then and try it out. Thanks FreewheelinFrank.

galooma

  • Guest
Re: Firewall with Avast
« Reply #26 on: April 15, 2005, 12:18:23 PM »
Thanks for the feedback Frank and yes it was the intrusions log I was referring to and BTW the find out more link was a dead end link . Be aware im not complaining as these attacks would be happening irrespective of what brand of firewall I run and its nice to know the IDS serves a purpose.
To shed a little more light on the difficulty / complexity of creating rules with Kpf i can advise that until i set Generic Host process and any other process toASK then i didnt need to create any rules.(see pic) With this setting in place a program would bring an alert and request to allow once or set a rule for a program requiring access. This made it really simple. :)
« Last Edit: April 15, 2005, 12:23:27 PM by Cloussau »

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Firewall with Avast
« Reply #27 on: April 15, 2005, 06:18:27 PM »
Setting up internet access rules is a bit more tricky than ZA.

When I tried ZA it asked me which applications I wanted to allow to access the internet, and the information the pop-ups gave made it easy to understand whether to do so or not.

I took ZA to Shield Up! after installation and it passed first time.

When I tried Kerio, it started asking me whether I wanted to allow connections from the internet to certain applications. The applications looked legit so I clicked yes. When it took Kerio to Shield Up!, it failed. I had to go back and change all the internet in rules to ask. I tried Shield Up again and denied any request to connect from the internet. This time Kerio passed.


After that I had one request to allow a connection to MSN when downloading a file, which I allowed, plus some mysterious requests for connection which I denied. Like yourself, I now have internet in set to deny for everything that has no need to accept connections, and I've had no more mysterious connection requests.

For a complete computer novice, I think Kerio would be the wrong choice, except in simple mode (which has no connection pop-ups,) because it's too easy to make mistakes like this.

Of course these internet application rules are really simple compared to advanced packet filter rules. My posting of the empty rule box shows you don't need to create any firewall rules, as opposed to connection rules.
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog