I agree with you about ZoneAlarm free. It's better than nothing, but it's definitely not that great from what I've seen. I've tried Comodo's free firewall and that seemed pretty good, although it can be a little "chatty" at the beginning.
Thanks.
I've used Comodo FP since version 3.0, including before it became Comodo IS, and 3.5. The last time I used it, I think the installation was v 3.8. While secure, I found Comodo to be too chatty and more likely than any other firewall I have used to "break" other installations (it broke Acronis, among other things). I have been much happier with Agnitum Outpost Pro (or free) and now I've used Online Armor for the last 6 months, and I've been very pleased with it. I am more likely to change my antivirus than Online Armor. It's whitelist is more extensive than Comodo's, and by default, unknown/untrusted processes can't run without obtaining your permission first. If you are cautious, keep your system updated (use secunia's free vulnerability inspector), remain intelligent about P2P downloads/programs, I think it's unlikely anything will slip past NIS 2010, and very unlikely anything will get past avast! + a good, free firewall (Comodo, Online Armor, Outpost, probably PC Tools as well).
Windows 7 firewall is not unreasonable, either. Another option (including 64 bit installations now), if you want a more nimble system, could involve avast! 5 free, windows 7 firewall and sandboxie. If something gets past avast! and didn't come from a drive-by-download (infected USB thumb drive, for example), I wouldn't expect windows 7 firewall to offer very much in the way of protection.
If I was in your position, since NIS 2010 is complimentary with your broadband service, I would probably run a "custom" installation of NIS 2010, install the antivirus but not firewall components [or deactivate the firewall components], (to see what you would need to uncheck or deactivate, compare the NAV 2010 to NIS 2010 here:
http://www.symantec.com/norton/internet-security), and then install a 3rd party free firewall (Outpost or Online Armor, based on my preference) and sandboxie.
If you are looking for the fastest, reasonably secure, free configuration based on the options available to you, then you may choose to do
a) custom install of NIS 2010 (install the AV only), windows 7 firewall, and sandboxie OR
b) avast 5! free, windows 7 firewall, sandboxie (just add sandboxie to your current configuration).
I think all of those options are good, its hard to go wrong.
An example of what not to do might be:
**ZoneAlarm free firewall, CA (computer associates) antivirus, threatfire free (PC Tools), and ZoneAlarm Forcefield.
That would cover firewall (ZA free), antivirus (CA), HIPS (threatfire), and browser virtualization (Forcefield); would assuredly bring your system to its knees and result in innumerable conflicts. This configuration relies on a combination of cumbersome security programs, but would probably give you pretty good protection as well.