Just installed SP2 (went like a dream).

It comes with a software firewall. My router (Belkin wireless router/modem)
has a hardware firewall.

Which one should I use? Or should I use both?

Cheers.

Bobby

The router uses NAT - network address translation - which
is all the security you should need. The web can
only 'see' the router's IP address, not the internal IP
addresses.

The Windows firewall - even the new one - still can't
detect or stop outward bound data, so, I would disable it.

Eric,
http://www.pcbuyerbeware.co.uk/
http://www.sharedbirthday.co.uk/

>-----Original Message-----
>Just installed SP2 (went like a dream).
>
>It comes with a software firewall. My router (Belkin
wireless router/modem)
>has a hardware firewall.
>
>Which one should I use? Or should I use both?
>
>Cheers.
>
>Bobby
>
>
>.
>

IMO, use the hardware firewall. If you wanted out bound blocking as well
then add Zone Alarm to the mix and use both, otherwise the router firewall
is fine.

Bobby wrote:
> Just installed SP2 (went like a dream).
>
> It comes with a software firewall. My router (Belkin wireless
> router/modem) has a hardware firewall.
>
> Which one should I use? Or should I use both?
>
> Cheers.
>
> Bobby

"Bobby" > wrote in message
...
> Just installed SP2 (went like a dream).
>
> It comes with a software firewall. My router (Belkin wireless
> router/modem) has a hardware firewall.
>
> Which one should I use? Or should I use both?
>
> Cheers.
>
> Bobby
>

The router firewall protects you from attacks from the internet.

If you also run the Windows XP firewall, additionally you get some
protection from attacks from other computers on your local network. This
protection is not as great as the protection you get from the router and the
internet because you probably have printer and file sharing enabled, and
this requires lower firewall settings. However, attacks from within your
local network may not be an issue. You have to make your own decision here.

If you run a commericial or free firewall program(probabably means that you
disable the Windows XP firewall) you in addition to both the items above get
warning for programs that run on your computer and try to access your
network or the internet. Most of these are legitimate, but if by some
means(from an e-mail attachment, virus, trojan, etc.) a malware program is
placed on your computer, this kind of firewall will provide some warning
when it tries to access the internet or network.

so, in order of increased security:

Router firewall > add Windows XP firewall > add commercial or free firewall
program(probably disable Windows XP firewall)

As a word of warning, adding a third party firewall program makes the system
more complex and may cause problems with network configuration or upgrading.
Usually this can be worked around by disabling the firewall while you are
doing those tasks, then re-enabling it.

I personally run a router with a hardware firewall, and Zonealarm free(with
the XP firewall off) on each computer. There are other equally good(some say
better) firewalls from other vendors.

Hope this helps.

Dick Kistler

I reckon the hardware firewall would be better. Don't use both, like
antivirus programs, only one is needed (and configured well)

"Bobby" > wrote in message
...
> Just installed SP2 (went like a dream).
>
> It comes with a software firewall. My router (Belkin wireless
router/modem)
> has a hardware firewall.
>
> Which one should I use? Or should I use both?
>
> Cheers.
>
> Bobby
>
>

Greetings --

WinXP's built-in firewall is _adequate_ at stopping incoming
attacks, and hiding your ports from probes. What WinXP SP2's firewall
does not do, is protect you from any Trojans or spyware that you (or
someone else using your computer) might download and install
inadvertently. It doesn't monitor out-going traffic at all, other
than to check for IP-spoofing, much less block (or at even ask you
about) the bad or the questionable out-going signals. It assumes that
any application you have on your hard drive is there because you want
it there, and therefore has your "permission" to access the Internet.
Further, because the Windows Firewall is a "stateful" firewall, it
will also assume that any incoming traffic that's a direct response to
a Trojan's or spyware's out-going signal is also authorized.

ZoneAlarm, Kerio, or Sygate are all much better than WinXP's
built-in firewall, and are much more easily configured, and there are
free versions of each readily available. Even the commercially
available Symantec's Norton Personal Firewall is superior by far,
although it does take a heavier toll of system performance then do
ZoneAlarm or Sygate.

Now, if you use a so-called hardware firewall, which is most
likely just a router with NAT, it's still a good idea to use a 3rd
party software firewall. Like WinXP's firewall, NAT-capable routers
do nothing to protect the user from him/herself. Again -- and I
_cannot_ emphasize this enough -- almost all spyware and many Trojans
and worms are downloaded and installed deliberately (albeit
unknowingly) by the user. So a software firewall, such as Sygate or
ZoneAlarm, that can detect and warn the user of unauthorized out-going
traffic is an important element of protecting one's privacy and
security. Most antivirus applications do not scan for or protect you
from adware/spyware, because, after all, you've installed them
yourself, so you must want them there, right?

I use both a router with NAT and Sygate Personal Firewall, even
though I generally know better than to install scumware. When it
comes to computer security and protecting my privacy, I prefer the old
"belt and suspenders" approach.


Bruce Chambers
--
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html

You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH


"Bobby" > wrote in message
...
> Just installed SP2 (went like a dream).
>
> It comes with a software firewall. My router (Belkin wireless
> router/modem) has a hardware firewall.
>
> Which one should I use? Or should I use both?
>
> Cheers.
>
> Bobby
>

Greetings --

What utter nonsense. A router with NAT is no better than the
built-in firewall.

Bruce Chambers
--
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html

You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH


"Eric" > wrote in message
...
> The router uses NAT - network address translation - which
> is all the security you should need.