Darksat IT Security Forums

Hardware, Software and Security => IT Security Forum => Topic started by: Darksat on August 23, 2006, 08:33:57 am



Title: Firewall Security.
Post by: Darksat on August 23, 2006, 08:33:57 am
Firewall Security.
Sometimes 2 firewalls are better than one.
many large networks have a dedicated firewall protecting thier connection to the internet while the user machines rely simply on virus scanners.
This can be a fatal flaw for many networks.
Advanced trojans nowdays use a technique called web tunneling.
they initiate a connection from the machine they have infected and route the connection through port 80 (the web port) sometimes even masking themselves as legitimate programs (this allows them to pass through most network firewalls).
a second firewall on your machine such as sygate allows you to manually set permissions for all programs accessing the net, preventing such trojans from connecting outwards. (please note only some firewall software allows you this option)

So please dont rely to much on your network firewall to protect you.


Title: Re: Firewall Security.
Post by: neutron2k on August 23, 2006, 09:23:24 am
I have two. I have a hardware firewall built into my router, and I use NIS on my main system.


Title: Re: Firewall Security.
Post by: Darksat on October 14, 2006, 11:54:00 am
What NIS are you using?


Title: Re: Firewall Security.
Post by: sacx13 on October 15, 2006, 01:20:12 pm
I also use 2 firewalls : 1 on my linux router (iptables/netfilter) and second on my workstation (sygate).

Regards


Title: Re: Firewall Security.
Post by: Darksat on October 16, 2006, 08:35:08 am
Sygate is a nice firewall, one of my faves.


Title: Re: Firewall Security.
Post by: desperado618 on July 13, 2008, 08:55:27 pm
Application layer firewalls are useless. If the packet has to traverse all the way to the APp layer before its filtered, it can do nothing for DOS or overflows. An enterprise class solution would involve a perimiter firewall and an application specific firewall by 2 seperate verdors.