Dumb firewall question

Forum Moderators: phranque

Message Too Old, No Replies

Dumb firewall question

Westat1

2:10 pm on May 14, 2003 (gmt 0)

I just installed a router that is supposed to have a firewall, how do I know if it is working right? Does it make sense to install Norton personal firewall too?

Thanks,

trillianjedi

2:12 pm on May 14, 2003 (gmt 0)

It's probably just a NAT router if it's a cheap and cheerful hardware job.

An additional firewall would be an idea if your running servers that are accessed from the internet on your network.

If you can tell us what make/model it is, may be able to offer some more info for you.

mat

2:13 pm on May 14, 2003 (gmt 0)

Can't harm to have multiple layers of firewall. As for testing, there are all sorts of online tools that will, ahem, probe you.

Do a Google search for firewall/security tests or the like - there is one very well known one called Shields Up!, and I'm pretty sure Symantec have got a similar thing also.

caine

2:14 pm on May 14, 2003 (gmt 0)

we use software firewall's behind a decent hardware firewall behind our router, to control port 80 at work.

Westat1

7:31 pm on May 14, 2003 (gmt 0)

thanks it is a netgear mr814
here are the specs:
[pcworld.pricegrabber.com...]

pixel_juice

7:37 pm on May 14, 2003 (gmt 0)

A software firewall's primary function (whether they admit it or not) is to control outwards connections. Your router should serve the purpose of limiting what connections are available.

trillianjedi

8:03 pm on May 14, 2003 (gmt 0)

westat1:-

As I thought - it's a basic NAT firewall (used to share an internet connection - shields the outside internet IP addy from the internal machines).

The freebie software firewall that comes with it will be very basic, but maybe ok (don't know it).

If you're running servers which are externally accessed, you need something better I would suggest.

If you're not running servers, it's probably enough, but for extra peace of mind you may want to install a personal firewall on each desktop, like Zone Alarm or the one that came with it.

Westat1

8:14 pm on May 14, 2003 (gmt 0)

trillianjedi
Thanks for your thoughts. I talked to netgrear and they told me there is both a NAT and firewall, they are not combined. I am only using it for DSL on a pc and laptop, nothing real technical. This is my first hands on experiment with networking. Thanks again

trillianjedi

8:42 pm on May 14, 2003 (gmt 0)

Sorry mate, I'm using the wrong terminology - my fault.

NAT is often described as a type of firewall, and, in a way, it is. In the sense that it isolates the internal networked machines from the external IP address.

NAT's primary function is to share the internet connection.

So you're behind NAT anyway, which will help, but a software firewall won't hurt and is a good defence to software trying to call "out" to the internet.