Popular Posts

  • sys admin day Forum
    We have added forums to the UK sys admin day website . As we continue to improve the UK sys admin day website we will add more content. ...
  • Microsoft Outlook - Keep zoom setting when reading emails
    Open up Outlook Press Alt and F11 Navigate to: Project1 | Microsoft Outlook Objects | ThisOutlookSession Paste the code below in (about 5...
  • Cisco Router stuck in rommon
    OK. A customer of mine sent a cisco back (1801) because they said it was broken. What they has done was to repower the router too quickly an...

Tuesday, 29 December 2009

What is a firewall?

A lot of people use firewalls, but what are they?

Perhaps the word firewall is confusing; this is because a firewall is more like a door than a wall.
As you walk down the street and look at front doors, you will notice that some are strong and others weak.
Some doors just need a kick and they will open.
Others are made of thick UPVC with multiple deadlocks.

This analogy is similar to the different types of firewalls that are on the market.

SOFTWARE FIREWALLS.
In my opinion these should NOT be used as your only defense.
They are very easy to bypass and should only be used as a backup measure.
The reason they are not secure is that if the computer is compromised then the first thing to be attacked is the software firewall.

To illustrate how insecure relying on a software firewall can be;
I have been on computers where Norton Firewall has asked if Zone Alarm can access the internet.
Unfortunately Zone Alarm was not installed on the PC.
Some programs pretend to be software firewalls so that they can gain control of the PC.

I would equate a software firewall to an internal door with a lock.
It stops the casual passerby from looking in, but if someone wanted to break in it wouldn't stop them for very long.

HARDWARE FIREWALLS
There are many types of these.
Some cost only a few pounds and others cost thousands.
Why the difference in cost.
The same reason why front doors range in cost.
The more you pay, the better they are.
I would look at paying about £100.
It seems that the £100 mark is usually a safe bet.
I have listed the things to look out for;

  • NAT - This allows more than one computer to access internet at once and gives basic protection


  • SPI - Stateful packet inspection - This looks at the information and does basic checks on it


  • Blocking ICMP - Stops other computers from seeing that you exist on the internet


  • DOS Protection - Denial of service - This is not so important, but it might stop someone from knocking you offline





This is only a basic explanation of firewalls, but I hope it helps.

My last piece of advice is this.
A good firewall has to be configured to allow internet services to work. If it just works without much setup then it probably has its settings to low.
A good firewall will shutdown connections to the internet when attacked, a bad firewall will open all connections when attacked.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)