Advice Request Firewall questions

Please provide comments and solutions that are helpful to the author of this topic.

tgniazero

New Member
Thread author
May 27, 2022
4
hi! if i would to protect a group of industrial PCs that couldn't install antivirus or malware endpoint. Would it be protected if it's behind an internal FW with just ftp and printing port open, and all other port blocked? Can the file transfer be single direction from internal to external in the firewall?

Would this setup ok?
 

Kongo

Level 35
Verified
Top Poster
Well-known
Feb 25, 2017
2,481
hi! if i would to protect a group of industrial PCs that couldn't install antivirus or malware endpoint. Would it be protected if it's behind an internal FW with just ftp and printing port open, and all other port blocked? Can the file transfer be single direction from internal to external in the firewall?

Would this setup ok?
A firewall may be able to block attacks on the network level, but if one of the users receives a fake document that is actually some type of ransomware and runs it, then even the best firewall can't stop the encryption process. A firewall can block malicious connections from and to a malicious actor, but there are types of malware that don't need to connect to a C&C server at all. So in short, a firewall shouldn't function as a standalone security tool.
 
L

Local Host

A firewall may be able to block attacks on the network level, but if one of the users receives a fake document that is actually some type of ransomware and runs it, then even the best firewall can't stop the encryption process. A firewall can block malicious connections from and to a malicious actor, but there are types of malware that don't need to connect to a C&C server at all. So in short, a firewall shouldn't function as a standalone security tool.
Most malware nowadays won't do anything without an Internet connection, so a Firewall will be more than enough.
 

Freki123

Level 15
Verified
Top Poster
Aug 10, 2013
737
If it's business I'd rather pay a professional to decide that question/fix the problem. If stuff goes wrong later you can shift the blame and liability to him (because that what he got paid for).
edit: I can't word it better but it's not home it's business rather pay and be on the safe side.
 

tgniazero

New Member
Thread author
May 27, 2022
4
A firewall may be able to block attacks on the network level, but if one of the users receives a fake document that is actually some type of ransomware and runs it, then even the best firewall can't stop the encryption process. A firewall can block malicious connections from and to a malicious actor, but there are types of malware that don't need to connect to a C&C server at all. So in short, a firewall shouldn't function as a standalone security tool.
hi! these are industrial pc, the data is generated from the pc and export out. can the firewall allows outbound file transfer only example via sftp or ftp? Thanks.
 

tgniazero

New Member
Thread author
May 27, 2022
4
You should consult a qualified network engineering firm. This forum is not the place to obtain correct industrial system networking advice.


You will have an impossible time finding an IT professional willing to accept liability. Their contracts are written such that they are blameless and all liability resides with the system owner.
just would like to understand and discuss what's the best way to protect these industrail pc that has limited processing power given the scenario mentioned.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top