Free firewalls, or independent from security suits

[Jarmo P]

Well, we use Avast antivirus, so we don't use no security suits.
We can use only XP SP2 firewall, good for inbound protection as any.

Also software like SpywareBlaster helps. I dont have much fancy in running some resident antispyware for paranoid purposes.

Sygare was a good firewall, really good. Never any problems. You all know about the local proxy issue though. Not so much in Avast, but still a little worry loosing outbound permissions what to let out. More so with other proxies. Other than that it was a great firewall.

Anyone wanting to have copies, still a few days or one:
http://207.33.111.31/spf/

Kerio 4.2.2 is an other one, a good firewall soon non existent.

I have seen others, but they are not like sygate or kerio.
I think them more as "toys". Never touched ZA with it's limitations.

So I wish you keep a copy either sygate or kerio.

Jarmo

[Lisandro]

Never touched ZA with it's limitations.

Which ones?

Do you believe Gibson? Look what he wrote:

One of the things that first caught my eye about the Zone Alarm personal firewall (aside from the fact that is was free) was that it has always been very clever about handling IDENT's port 113. I recall being impressed and thinking "these guys really know what they're doing". When Zone Alarm receives an inbound connection request for port 113, it checks to see whether the computer has recently initiated any outbound connections to the remote server sending the IDENT request. If not, the IDENT packet is simply dropped, stealthing the protected machine. But if the user does have an existing "relationship" with the sender of the IDENT request, the IDENT packet is allowed to pass through Zone Alarm's firewall protection so that the user's system can respond normally (which usually means immediately returning a closed status for the port). This means that Zone Alarm is a "stateful packet inspecting personal firewall", not just a simpler static packet filter.
https://www.grc.com/port_113.htm

[igor]

When Zone Alarm receives an inbound connection request for port 113, it checks to see whether the computer has recently initiated any outbound connections to the remote server sending the IDENT request. If not, the IDENT packet is simply dropped, stealthing the protected machine.

Maybe clever, but I hope it can be turned off...

[Jarmo P]

Tech, ask the guy in this forum who is good one in making them, to make you a better avatar.
Not liking you to see jump so much. But much better than you used to have.

I know ZA is an ok firewall, just never for me

Free firewalls beside Sygate and Kerio and not toys to mess up your computer, hehe. Excluding ZA, too simple

I would stick to the firewall even if it dies, than one with problems.

[Lisandro]

Maybe clever, but I hope it can be turned off...

How? How can I stealth that port?

[szc]

Which router/firewall are you using ?

[Lisandro]

Tech, ask the guy in this forum who is good one in making them, to make you a better avatar.
Not liking you to see jump so much. But much better than you used to have.

Can you rephrase? I do not follow what you mean?

Which router/firewall are you using ?

Firewall: Kerio 4.2.2

Router: TrendNet TW100-S4W1CA Broadband Router
http://www.trendware.com/products/TW100-S4W1CA.htm
http://www.computerhq.com/TRENDnet_TW100-S4W1CA_DSL_Cable/TW100-S4W1CA/products/partinfo-id-30372.html

[szc]

You should go through all those router options, Maybe you already have that option like I have in my Linksys wireless router. See here:



If not, then you have to do that manually... follow these instructions, it's unbelievable easy:

http://grc.com/port_113.htm

That was the case with my old D-Link DI-604 router, no option in configuration settings, so you have to do it manually. Read everything and you'll find how to do that with your type of router.

This is the screenshot I took from the configuration page of my old D-Link:



You just have to forward that port to some non-existing IP address on your network (out of range).

[Jarmo P]

Nothing to do with any firewall if you are not stealthed Tech.
It is your router and I hope sasha helped. Other than that using kerio, deny incoming from system.

Best wishes, Jarmo

Edit: I still dont like your skateboard avatar, wish sasha makes you a better one, lol

[MFB]

Edit: I still dont like your skateboard avatar, wish sasha makes you a better one, lol

Tech can keep the avatar if he wants to.  Does it really bother you?   

[rdmaloyjr]

I know ZA is an ok firewall, just never for me

 Excluding ZA, too simple

I would stick to the firewall even if it dies, than one with problems.

The simpler the better.  I don't want anything complicated.

ZoneAlarm is a great firewall, I don't have any problems with it. 

Many thanks to ZoneLabs for providing an excellent free firewall.  The same goes to Alwil, Javacool, Lavasoft, WinPatol, Spybot S&D, ewido & Microsoft AntiSpyware for their superb freeware.

[Lisandro]

Edit: I still dont like your skateboard avatar, wish sasha makes you a better one, lol

Tech can keep the avatar if he wants to.  Does it really bother you?   

I'll use the one Sasha made for me... He rules my avatar

[Umath]

Maybe clever, but I hope it can be turned off...

How? How can I stealth that port?

Simply by dropping the connection.  However, by doing this, you might experience delays in connections with your mailbox.  Zone Alarm has a way to solve the problem through the method you quoted, which seems to have been adopted to some latest hardware firewalls.

As for Tech's avatar, well, personally, I like it.

[Raye]

Well, we use Avast antivirus, so we don't use no security suits.
We can use only XP SP2 firewall, good for inbound protection as any.

Also software like SpywareBlaster helps. I dont have much fancy in running some resident antispyware for paranoid purposes.

Sygare was a good firewall, really good. Never any problems. You all know about the local proxy issue though. Not so much in Avast, but still a little worry loosing outbound permissions what to let out. More so with other proxies. Other than that it was a great firewall.

Anyone wanting to have copies, still a few days or one:
http://207.33.111.31/spf/

Kerio 4.2.2 is an other one, a good firewall soon non existent.

I have seen others, but they are not like sygate or kerio.
I think them more as "toys". Never touched ZA with it's limitations.

So I wish you keep a copy either sygate or kerio.

Jarmo

Terve Jarmo ykksi ruotsalainen tässä ! Hi Jarmo en svensk här.
I was just wondering what you think about R-Firewall it seems to work well with my lovely Avast. Zonealarm has NOT the compability.

Raye

[lee16]

You just have to forward that port to some non-existing IP address on your network (out of range)

A good way is to put it 1 or 2 under your DHCP protocal, rather then at the end of it, like grc suggested (in my opinon anyway).

I was just wondering what you think about R-Firewall it seems to work well with my lovely Avast

Not heard of it before, so can't speak from exspirience, however some people here seem to think its a little buggy.


BTW, does anyone understand what "Filter multicast" is, its disabled by default on my router (linksys), and iv always wonderd whether its better for security to have it enabled.

--lee