Do I need a software firewall?

  • Thread starter Thread starter Maxine
  • Start date Start date
M

Maxine

Hi. I have an Asante FR3004 router which is configured using a web
interface. Is there any reason that I'd need a software firewall in
addition? Is there anything special I should pay attention to in the
configuration?

Thanks,
Maxine
 
From: "Maxine" <[email protected]>

| Hi. I have an Asante FR3004 router which is configured using a web
| interface. Is there any reason that I'd need a software firewall in
| addition? Is there anything special I should pay attention to in the
| configuration?
|
| Thanks,
| Maxine

Do you have multiple Win32 PCs on the LAN side ?

If yes, one PC may get infected and can spread to the others. The software FireWall may
help to block that spreading.

As always, I suggest specifically blocking both TCP and UDP ports 135 ~ 139 and 445 on *any*
SOHO Router. The Asante supports such specific port blokings.
 
Hi. I have an Asante FR3004 router which is configured using a web
interface. Is there any reason that I'd need a software firewall in
addition?
Click to expand...


No.


Jim.
 
[email protected] said:
From: "Maxine" <[email protected]>

| Hi. I have an Asante FR3004 router which is configured using a web
| interface. Is there any reason that I'd need a software firewall in
| addition? Is there anything special I should pay attention to in the
| configuration?
|
| Thanks,
| Maxine

Do you have multiple Win32 PCs on the LAN side ?

If yes, one PC may get infected and can spread to the others. The software FireWall may
help to block that spreading.
Click to expand...

That's what the antivirus is for. Running a software firewall behind a
hardware router is just a waste of resources. You shouldn't depend on a
software firewall to keep machines on the lan from talking to each
other. Besides, if the user does have multiple pcs, they might want to
share resources, and the user will configure the software firewall to
allow this, which would allow a rogue application access to the others
anyway.
As always, I suggest specifically blocking both TCP and UDP ports 135 ~ 139 and 445 on *any*
SOHO Router. The Asante supports such specific port blokings.
Click to expand...

Unless you have a box in the DMZ, firewalling turned off, or specific
ports forwarded, NO ports from outside the lan should be accessable to
the computers behind the firewall. IE: this port blocking is already
being done. It shouldn't have to be specified.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool
Version 1.9.2 Released August 15th, 2006
Last Pattern Update: September 1st, 2006
http://bughunter.it-mate.co.uk
 
Back
Top