Re: sp2 firewall

From: Phil (I.fix.probs_at_for.you)
Date: 08/08/04

Next message: Ken Blake: "Re: Format and Clean Install of XP"
Previous message: kelley: "norton anti virus"
In reply to: Max Burke: "Re: sp2 firewall"
Next in thread: hardhead: "Re: sp2 firewall"
Reply: hardhead: "Re: sp2 firewall"
Messages sorted by: [ date ] [ thread ]

Date: Sun, 8 Aug 2004 15:34:57 -0400

Max Burke wrote:
>> Phil scribbled:
>> Why would you need two software firewalls running?
>
> Because we can, and because ICF does not stop outbounds.....

I wouldn't use ICF anyway. Like I said find one that does what you need and
use only that one. I use ZA for the outbound protection and BTW, it does
inbound to. So if ZA does outbound and inbound then that's all you need.

>
>> One firewall is
>> enough.
>
> Two is better than one; Consider it as a 'second opinion' option.

It can't give a "second opinion. a firewall is a firewall, they all
eseentially do the same thing, open/close/block ports. Two firewalls would
give you the same "opinion".

>
>> Running two does not give you any extra protection.
>
> Yes it does. It fills a *glaring* gap in ICF protection.

No it doesn't. If you want outbound then use something like zone alarm. It
does in bound and out bound. There is no reason to have to inbound blockers.
If you want to fill the gap that icf has(no outbound), then like I said a
few times already, use one that does both and be done with it.

>
>> I suggest
>> you find one firewall that has the options/features that you want and
>> use just that. If you use a third party firewall, then the xp
>> firewall isn't needed.
>
> But it's there, and it works, so why not use it.

Already answered, there no reason to, except to use resources and possibly
cause conflicts.
Having two firewalls running is like having two locks on your door, but they
both use the same key to open them.

Next message: Ken Blake: "Re: Format and Clean Install of XP"
Previous message: kelley: "norton anti virus"
In reply to: Max Burke: "Re: sp2 firewall"
Next in thread: hardhead: "Re: sp2 firewall"
Reply: hardhead: "Re: sp2 firewall"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: ZoneAlarm Pro, Sygate Personal Firewall, or built in xp firewall?
... ICF monitors outbound ports to know what inbound ports to block/open. ... blocks unsolicited connection attempts. ... connect to the Internet but would not normally purchase a firewall from the ... baseline intrusion prevention mechanism in Windows XP. ...
(microsoft.public.windowsxp.security_admin)
Re: Proposed Internet Connection Firewall change in WinXP SP2
... Of course a firewall is totally ineffectual against unintelligent ... I would advise you to look at alternatives to DCOM based ... Microsoft MVP ... >> available for management for ICF from group policy. ...
(microsoft.public.windowsxp.security_admin)
SBS 2003 security policy...
... I just discovered an amazing new feature of SBS 2003 security policy: ... computers without at least a simple firewall like the one from Microsoft ... they simply disable ICF altogether *while* its connected to the domain. ...
(NT-Bugtraq)
Re: Baseline script (disable services etc.)
... > If anyone could give me any tips (as to turning on the ICF and disabling ... Disabling of services: ... Connection Firewall on a connection, ... Note that when using the EnableInternetFirewall/DisableInternetFirewall ...
(microsoft.public.scripting.vbscript)
Re: Proposed Internet Connection Firewall change in WinXP SP2
... > available for management for ICF from group policy. ... Microsoft should very loudly announce that DCOM will be not be ... If a worm/virus is able to get through a corporate firewall, ... But a firewall on every workstation on the corporate network? ...
(microsoft.public.windowsxp.security_admin)