Re: How well does the Windows Vista Firewall work?

Alias wrote:
Chris S. wrote:

"Alias" <aka@masked&anonymous.co.uk> wrote in message news:g6i7pm$l7q$1@xxxxxxxxxxx
Gary S. Terhune wrote:
Please substantiate your claim that routers come without the firewall enabled by default. Document one such model, from any manufacturer. If you have a list, so much the better. Heck, even if you can't find documentation, just name them and I'll go find out what's what, even if I have to track someone down on the phone and have them personally check.


Edimax BR 6104-K is the one I use and I have the same experience with numerous Conceptronic routers for starters. They also come with blank passwords. The little instruction booklet that comes with them gives instructions on how to access the router, create a password and enable the firewall.

Alias

The Edimax and Conceptronic routers seem to be made by the same
manufacturer. Their manuals contain essentially the same verbiage.
Both manuals note that the default user name and password are
"admin" and "1234". There is no "Firewall Enable" function per se.
Like all routers, "Firewall" functionality is in selectively allowing
or disallowing protocols and/or port access. A consumer class
router is just a router.

...Chris

In both there is a section called, of all things, "Firewall" with two choices: enable or disable.


The man is talking about FW technology which is setting rules to allow inbound or outbound packets to/from a FW by setting packet filtering rules to filter packets by port TCP/UDP, IP (WAN/LAN IP), protocol type FTP HTTP, ICMP and other protocols etc etc, subnet mask or domain.

I looked at the manual for that piece of junk you're talking about. All it's talking about is SPI enabling or disabling that, which is on by default by most other home user NAT routers that have SPI.

There are lots of home user routers that don't have SPI at all, but still act as a firewall or border device to block unsolicited inbound traffic from reaching the LAN and to allow solicited inbound traffic back from a remote IP to the machine and the program running on the machine that made the solicitation.
.

Relevant Pages

  • Re: Misconceptions
    ... I admit Firewalls and Routers aren't the exact same thing (of ... Personal Firewall, I wonder if that program is any good? ... > handled by anti-virus programs, which should be on ... > A NIDS is just that. ...
    (comp.security.firewalls)
  • Re: Hardware, software or both?
    ... one more question please regarding routers. ... > 2) Software firewalls are easy for the non-technical computer user to ... > of the personal firewall applications. ...
    (comp.security.firewalls)
  • Re: How to Stealth POP3 Port 110 using NIS2000?
    ... | According to the firewall log, that port is not even being probed. ... coming from your ISP's routers, ... Check out the NIS rules for POP3 and SMTP for your e-mail client software. ... "Unused Port Blocking". ...
    (comp.security.firewalls)
  • Re: [fw-wiz] OSPF on Firewall
    ... > Now I have to insert a firewall in-between the two routers. ... Forward the OSPF traffic in bridge mode with MAC address, ... Do static routing between the routers, ...
    (Firewall-Wizards)
  • Misconceptions
    ... only two pieces of track leading to the turntable, then the routing function ... but that does not make them a "firewall". ... usually a private/office network) routers. ... Although Black Ice NIDS apparently has heuristic capabilities, ...
    (comp.security.firewalls)