Umbra Corp. said:If just the firewall module:
1- CFW (very very tweakable, very light)
2-OAP (less tweakable)
if the whole product:
1- OAP (more features, graphic monitor, network lookup)
2- CFW (less features)
Umbra Corp. said:Comodo Firewall = FW + HIPS (named D+) + policy-based & full virtualization sandbox
OAP = FW + HIPS + policy-based sandbox + banking mode + web filter
make your choice ^^
i used both from a very very long time and my favorite right now is OAP
mercurial said:I guess i will have to run um both and see which one fits my bill the best.
arsenaloyal said:I use Outpost Firewall Pro,as to the need for a firewall, i use it because i am on a LAN network without a router,so i use OFP to stealth and block all the ports except the one i want allowed.
Have been using OFP without any problems for about 3-4 years now.
mercurial said:arsenaloyal said:I use Outpost Firewall Pro,as to the need for a firewall, i use it because i am on a LAN network without a router,so i use OFP to stealth and block all the ports except the one i want allowed.
Have been using OFP without any problems for about 3-4 years now.
Intresting...but doesn't all the third party firewall stealth your ports ?
Umbra Corp. said:If just the firewall module:
1- CFW (very very tweakable, very light)
2-OAP (less tweakable)
if the whole product:
1- OAP (more features, graphic monitor, network lookup)
2- CFW (less features)
mercurial said:Intresting...but doesn't all the third party firewall stealth your ports ?
The problem with the "stealth" concept, is that there is no such thing...
Someone has decided at some point that if their computer doesn't respond to standard networking protocols, they will be invisible.
This is not the case...
The problem is that if a computer makes a request, (A simple ping, for example) it expects a response. This is standard networking protocol. Yes, even if a machine is turned off, a reply that the host is unreachable will result if a machine is pinged.
This lack of a response because you're "stealthed" actually tells someone (if they care) that not only is there a computer at that address, but it's actively dropping requests. :exclamation:
So much for 'stealth'.
Littlebits said:The best firewall?
1. Windows Firewall
2. ZoneAlarm Free (pure firewall, no BS)
3. Windows Firewall companions like (BiniSoft Windows Firewall Control, fireBwall, Windows Firewall Notifier, TinyWall and Sphinx Windows 7 Firewall Control)
Windows Firewall companions are starting to get very popular, many of which are portable. The popularity of third-party firewalls is starting to fade away since they are no longer necessary. Many firewall vendors have already discontinued or made security suites because even they know firewalls are no longer a necessary part of security protection.
Firewalls were originally developed to block spyware and hacking for home users. Spyware is basically gone today and only corporate systems get hacked. Also with the improvements in Windows Firewall and most home users have routers with firewalls with are much more effective than a software based firewalls. Home users no longer need software based firewalls other then Windows Firewall.
Why? because they never cause any system problems or problems with programs. They all uninstall completely without leaving behind boot network drivers that continue to cause problems after uninstalling or upgrading. It is very unlikely that a home user will be exposed to a hacker or spyware.
Thanks.
Littlebits said:...most home users have routers with firewalls with are much more effective than a software based firewalls.
HeffeD said:Littlebits said:...most home users have routers with firewalls with are much more effective than a software based firewalls.
Yes and no. Hardware firewalls are unable to intercept untrusted applications accessing the internet the way a software firewall can.
But in general, even a router with NAT enabled and the hardware firewall turned off is going to leave your software firewall to only be dealing with outgoing requests.
You can see this magic yourself by going to GRC and running the ShieldsUp! port scan with your firewalls (hardware and software) turned off and only having NAT enabled on your router.
Hey, look at that! I'm "stealth" with no firewall. (Although due to standard networking protocols, your router will likely respond to Ping even though NAT is turning away all other non-specific traffic)