Great *free* Firewall

CommunistWithAGunCommunistWithAGun Local Propaganda Guy Join Date: 2003-04-30 Member: 15953Members
in Off-Topic
<div class="IPBDescription">Zone Alarm Ain't Cutting It.</div> All you really need to know is contained in the title/description. I'm looking for a reliable free firewall, any except zonealarm. Thanks <!--emo&:)--><img src='http://www.unknownworlds.com/forums/html/emoticons/smile.gif' border='0' style='vertical-align:middle' alt='smile.gif'><!--endemo-->
Off Topic Disagree Agree Awesome
«1

Comments

  • TalesinTalesin Our own little well of hate Join Date: 2002-11-08 Member: 7710NS1 Playtester, Forum Moderators
    A Linux NAT. Sorry.. if you're on windows and are connected directly to the 'net, ZA is about the best you can do. Hell, they even offer a free version. If you were hit with the IE/JPG BS that's been going around recently... well, that's just an upgrade to a browser that actually follows standards (IE ignores stated MIMEtypes and tries to 'guess' every time, which is why the JPG thing works on it), like Mozilla/Firebird. It'll also fix any 'file not found' errors yu may get while using these forums.

    And no, before anyone suggests it, BlackIce Defender is one of the WORST things you can do. It lights you up like a christmas tree... essentially telling the outside world that you're vulnerable to EVERY exploit under the sun, while blocking most of them. Problem is... <i>most</i>. Eventually, someone will find one that BID missed, and you'll be up **** creek in an innertube, headfirst.
    Off Topic Disagree Agree Awesome
  • CommunistWithAGunCommunistWithAGun Local Propaganda Guy Join Date: 2003-04-30 Member: 15953Members
    Zone alarm tends to kill all my internet traffic when its enabled, and I've set its useage to "learning mode" So I don't have to worry about setting up ports and stuff just for certain things. However recently it, even when Im done configuring, makes my internet die. (Its not locking access either, just looks fine but isn't)
    Off Topic Disagree Agree Awesome
  • HypergripHypergrip Suspect Germany Join Date: 2002-11-23 Member: 9689Members, NS1 Playtester, Contributor
    Linux: NAT with IP Tables, Snort, and so on and so on... All freeware but takes quite some time to use it if you are unexperienced. But those things are very well dodumentated and there are lots of security tutorials out there. Dig out your old pentium computer, download your free Debian CD, install your free software, read the free tutorials, invest hundrets of free hours <!--emo&;)--><img src='http://www.unknownworlds.com/forums/html/emoticons/wink.gif' border='0' style='vertical-align:middle' alt='wink.gif'><!--endemo--> into installing and configuring and you got yourself a reliable and free Firewall/Packetfilter.

    Windoze: Tiny Personal Firewall > Zonealarm... the bad thing is, that in August 2003 the guys at Tiny Software decided to discontinue the 4.5 Version wich was free for personal use and concentralte on the 5.0 and 5.1 versions wich both cost $45+ depending on your OS and needs <!--emo&:(--><img src='http://www.unknownworlds.com/forums/html/emoticons/sad.gif' border='0' style='vertical-align:middle' alt='sad.gif'><!--endemo-->
    Off Topic Disagree Agree Awesome
  • CommunistWithAGunCommunistWithAGun Local Propaganda Guy Join Date: 2003-04-30 Member: 15953Members
    I see. Thanks for the help.
    Off Topic Disagree Agree Awesome
  • VenmochVenmoch Join Date: 2002-08-07 Member: 1093Members
    Try Norton Internet Security

    It seems to have everything you need. As well as a good Anti-Virus......


    Although I now expect Talesin to pwn me.
    Off Topic Disagree Agree Awesome
  • TalesinTalesin Our own little well of hate Join Date: 2002-11-08 Member: 7710NS1 Playtester, Forum Moderators
    Norton and 'good anti-virus' do not belong on the same <b>page</b>, unless you're advising someone who was /formerly/ using Norton on a *decent* antiviral.

    As well, CWAG was asking for a free solution. Last I checked, Norton required payment to sit there and drool on your computer.
    Off Topic Disagree Agree Awesome
  • VenmochVenmoch Join Date: 2002-08-07 Member: 1093Members
    My Mouth = Pwned
    Off Topic Disagree Agree Awesome
  • CForresterCForrester P0rk(h0p Join Date: 2002-10-05 Member: 1439Members, Constellation
    edited January 2004
    I haven't tried it, but I recommend that you just get an old 486, pop in like... 2 network cards (If you're only connecting one computer. Add more if you need more.) and then get <a href='http://www.smoothwall.org/' target='_blank'>Smoothwall Linux</a>, a distro dedicated entirely to being a firewall and a gateway, and set everything up through there. I hear it's great, but I haven't got a computer to try it on.

    [EDIT:] From the main page:
    <!--QuoteBegin--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->SmoothWall Express is based on the Linux operating system. Linux is the ideal choice for security systems; it is well proven, secure, highly configurable and freely available as open source code. SmoothWall includes a hardened subset of the GNU/Linux operating system, so there is no separate OS to install. Designed for ease of use, SmoothWall is configured via a web-based GUI, and requires absolutely no knowledge of Linux to install or use.<!--QuoteEnd--></td></tr></table><span class='postcolor'><!--QuoteEEnd-->

    486 computers run for what nowadays? Like $20-$30?
    Off Topic Disagree Agree Awesome
  • TalesinTalesin Our own little well of hate Join Date: 2002-11-08 Member: 7710NS1 Playtester, Forum Moderators
    You can get 'em for free, if you know where to look. Though I prefer Slackware over Smoothwall. Best part is, after they're up, running and configured, you don't really need to have anything hooked up to them... no keyboard, mouse, or monitor. It's just the happy beige box sitting in the corner. In my case, also serving as a webserver, FTP server, newsgroup cache, mailserver, and network fileserver. <!--emo&:)--><img src='http://www.unknownworlds.com/forums/html/emoticons/smile.gif' border='0' style='vertical-align:middle' alt='smile.gif'><!--endemo-->
    Off Topic Disagree Agree Awesome
  • CommunistWithAGunCommunistWithAGun Local Propaganda Guy Join Date: 2003-04-30 Member: 15953Members
    Once I get my Good pc back from the RMA Ill use this as the linuxwall <!--emo&:)--><img src='http://www.unknownworlds.com/forums/html/emoticons/smile.gif' border='0' style='vertical-align:middle' alt='smile.gif'><!--endemo-->
    Off Topic Disagree Agree Awesome
  • BlackMageBlackMage [citation needed] Join Date: 2003-06-18 Member: 17474Members, Constellation
    cwag, i got a 286 (currently running os2) you could have for $15 <!--emo&:p--><img src='http://www.unknownworlds.com/forums/html/emoticons/tounge.gif' border='0' style='vertical-align:middle' alt='tounge.gif'><!--endemo-->

    yeah, with security you gets what you pays for ... pony up, linksys is cheap this time of year
    Off Topic Disagree Agree Awesome
  • XiileXiile Join Date: 2003-02-22 Member: 13818Members
    <a href='http://blackice.iss.net/' target='_blank'>BlackIce?</a>
    I don't know if it's free though...
    Off Topic Disagree Agree Awesome
  • MonsieurEvilMonsieurEvil Join Date: 2002-01-22 Member: 4Members, Retired Developer, NS1 Playtester, Contributor
    edited January 2004
    If you use XP, you already have one. Just turn it on.

    <!--QuoteBegin--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->To enable or disable Internet Connection Firewall
    Open Network Connections
    Click the Dial-up, LAN or High-Speed Internet connection that you want to protect, and then, under Network Tasks, click Change settings of this connection.
    On the Advanced tab, under Internet Connection Firewall, select one of the following:
    To enable Internet Connection Firewall (ICF), select the Protect my computer and network by limiting or preventing access to this computer from the Internet check box.
    To disable Internet Connection Firewall, clear the Protect my computer and network by limiting or preventing access to this computer from the Internet check box.
    Notes

    To open Network Connections, click Start, click Control Panel, and then double-click Network Connections.
    You must be logged on as an administrator or a member of the Administrators group in order to complete this procedure. If your computer is connected to a network, network policy settings may also prevent you from completing this procedure.
    If you clear the Protect my computer and network by limiting or preventing access to this computer from the Internet check box, the firewall on your computer is disabled, and your network is vulnerable to intrusions.
    You should not enable Internet Connection Firewall on virtual private networking (VPN) connections or on client computers because ICF will interfere with file and printer sharing.
    ICF cannot be enabled on the private connections of the Internet Connection Sharing host computer.
    Internet Connection Sharing, Internet Connection Firewall, Discovery and Control, and Network Bridge are not available on Windows XP 64-Bit Edition.
    <!--QuoteEnd--></td></tr></table><span class='postcolor'><!--QuoteEEnd-->
    Off Topic Disagree Agree Awesome
  • DreadDread Join Date: 2002-07-24 Member: 993Members
    I use Sygate Personal. We have a deal, it doesn't bug me and I won't uninstall it. So far it's working great. And I have Norton too. But that's just for decoration. F-prot does the trick.

    I have to step outside tomorrow. It's cold out there. Not related to topic but I just wanted to let you know. Wish me luck.
    Off Topic Disagree Agree Awesome
  • GadzukoGadzuko Join Date: 2002-12-26 Member: 11556Members, Constellation
    <!--QuoteBegin--XeroSlayer+Jan 4 2004, 12:54 PM--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (XeroSlayer @ Jan 4 2004, 12:54 PM)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin--> <a href='http://blackice.iss.net/' target='_blank'>BlackIce?</a>
    I don't know if it's free though... <!--QuoteEnd--> </td></tr></table><span class='postcolor'> <!--QuoteEEnd-->
    *twitch*
    Off Topic Disagree Agree Awesome
  • CommunistWithAGunCommunistWithAGun Local Propaganda Guy Join Date: 2003-04-30 Member: 15953Members
    <!--QuoteBegin--MonsieurEvil+Jan 4 2004, 01:29 PM--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (MonsieurEvil @ Jan 4 2004, 01:29 PM)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin--> If you use XP, you already have one. Just turn it on.

    <!--QuoteBegin--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> </td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->To enable or disable Internet Connection Firewall
    Open Network Connections
    Click the Dial-up, LAN or High-Speed Internet connection that you want to protect, and then, under Network Tasks, click Change settings of this connection.
    On the Advanced tab, under Internet Connection Firewall, select one of the following:
    To enable Internet Connection Firewall (ICF), select the Protect my computer and network by limiting or preventing access to this computer from the Internet check box.
    To disable Internet Connection Firewall, clear the Protect my computer and network by limiting or preventing access to this computer from the Internet check box.
    Notes

    To open Network Connections, click Start, click Control Panel, and then double-click Network Connections.
    You must be logged on as an administrator or a member of the Administrators group in order to complete this procedure. If your computer is connected to a network, network policy settings may also prevent you from completing this procedure.
    If you clear the Protect my computer and network by limiting or preventing access to this computer from the Internet check box, the firewall on your computer is disabled, and your network is vulnerable to intrusions.
    You should not enable Internet Connection Firewall on virtual private networking (VPN) connections or on client computers because ICF will interfere with file and printer sharing.
    ICF cannot be enabled on the private connections of the Internet Connection Sharing host computer.
    Internet Connection Sharing, Internet Connection Firewall, Discovery and Control, and Network Bridge are not available on Windows XP 64-Bit Edition.
    <!--QuoteEnd--></td></tr></table><span class='postcolor'><!--QuoteEEnd--> <!--QuoteEnd--> </td></tr></table><span class='postcolor'> <!--QuoteEEnd-->
    I don't use Windows Xp right now because its a resource hog and my current PC is...less than excellent. I use win2k atm.
    Off Topic Disagree Agree Awesome
  • MonsieurEvilMonsieurEvil Join Date: 2002-01-22 Member: 4Members, Retired Developer, NS1 Playtester, Contributor
    Okedoke. Well, here are pretty much all the reputable and completely free ones:

    <a href='http://www.snapfiles.com/freeware/security/fwfirewall.html' target='_blank'>http://www.snapfiles.com/freeware/security...fwfirewall.html</a>
    Off Topic Disagree Agree Awesome
  • Cereal_KillRCereal_KillR Join Date: 2002-10-31 Member: 1837Members
    <!--QuoteBegin--XeroSlayer+Jan 4 2004, 07:54 PM--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (XeroSlayer @ Jan 4 2004, 07:54 PM)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin--><a href='http://blackice.iss.net/' target='_blank'>BlackIce?</a>
    I don't know if it's free though...<!--QuoteEnd--></td></tr></table><span class='postcolor'><!--QuoteEEnd-->
    <!--QuoteBegin--Talesin+ Before anyone else posted--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (Talesin @ Before anyone else posted)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin-->And no, before anyone suggests it, BlackIce Defender is one of the WORST things you can do. It lights you up like a christmas tree... essentially telling the outside world that you're vulnerable to EVERY exploit under the sun, while blocking most of them. Problem is... most. Eventually, someone will find one that BID missed, and you'll be up **** creek in an innertube, headfirst. <!--QuoteEnd--></td></tr></table><span class='postcolor'><!--QuoteEEnd-->
    Off Topic Disagree Agree Awesome
  • HellbillyHellbilly A whole title out of pity... Join Date: 2002-11-02 Member: 3931Members, NS1 Playtester, Constellation
    Sygate Personal Firewall is the best i have ever used. I love it.
    Off Topic Disagree Agree Awesome
  • Umbraed_MonkeyUmbraed_Monkey Join Date: 2002-11-25 Member: 9922Members
    I use Tiny Personal Firewall. Its small, passes all sorts of tests, and no longer available. Now theres the newer Kerio Personal Firewall thats got something I didnt like (dont remember what it was, must have been a technical problem) and thats okay too, I guess.
    Off Topic Disagree Agree Awesome
  • CForresterCForrester P0rk(h0p Join Date: 2002-10-05 Member: 1439Members, Constellation
    Just a note... Once you DO choose a firewall, put it through it's paces at <a href='https://www.grc.com/x/ne.dll?bh0bkyd2' target='_blank'>ShieldsUP!</a>
    Off Topic Disagree Agree Awesome
  • ScinetScinet Join Date: 2003-01-19 Member: 12489Members, Constellation
    After going through most of the available software firewalls, I'd say Kerio Personal Firewall (formerly known as Tiny) does the trick best. Just point your browser to <a href='http://www.kerio.com' target='_blank'>http://www.kerio.com</a> and download the latest free version. Kerio PF combined with AVG for virus infections seems to make my PC both safe and happy resource-wise.

    As for the other firewalls, ZA bogs down net traffic and is a pain in the rear end for Overnet and Ventrilo users, Norton Personal Firewall looks good and professional until actually asked to block something (although I did appreciate the possibility to restrict/allow only certain ports per program) and I forget why I uninstalled Sygate. I guess it just wasn't enough. I've heard that the Finnish firewall Netti-Kilpi is actually a very fine piece of software. Unfortunately it's not free, so I can't verify this.
    Off Topic Disagree Agree Awesome
  • CForresterCForrester P0rk(h0p Join Date: 2002-10-05 Member: 1439Members, Constellation
    I've never really had a problem with ZoneAlarm. I tried Kerio once. It left a big gaping open port, and I couldn't figure out how to set connection permissions to port 80. (I ran Apache sometimes.)
    Off Topic Disagree Agree Awesome
  • ScinetScinet Join Date: 2003-01-19 Member: 12489Members, Constellation
    edited January 2004
    <!--QuoteBegin--CForrester+Jan 4 2004, 05:57 PM--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (CForrester @ Jan 4 2004, 05:57 PM)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin--> I've never really had a problem with ZoneAlarm. I tried Kerio once. It left a big gaping open port, and I couldn't figure out how to set connection permissions to port 80. (I ran Apache sometimes.) <!--QuoteEnd--></td></tr></table><span class='postcolor'><!--QuoteEEnd-->
    I think this is the main argument for buying the commercial version of any available software firewall. If I'm not mistaken, the "professional" versions usually incorporate tools to block individual ports.
    Off Topic Disagree Agree Awesome
  • CForresterCForrester P0rk(h0p Join Date: 2002-10-05 Member: 1439Members, Constellation
    That's why I'm happy with my copy of ZoneAlarm Pro. <!--emo&:p--><img src='http://www.unknownworlds.com/forums/html/emoticons/tounge.gif' border='0' style='vertical-align:middle' alt='tounge.gif'><!--endemo-->
    Off Topic Disagree Agree Awesome
  • pardzhpardzh Join Date: 2002-10-25 Member: 1601Members
    Wow, I never even knew about the ICF thing in WinXP.

    I <3 MonsE.
    Off Topic Disagree Agree Awesome
  • BOBDololBOBDolol Join Date: 2003-10-04 Member: 21431Members
    Is the xp firewall any good?
    Off Topic Disagree Agree Awesome
  • ScinetScinet Join Date: 2003-01-19 Member: 12489Members, Constellation
    <!--QuoteBegin--BOBDOLOL+Jan 4 2004, 06:46 PM--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (BOBDOLOL @ Jan 4 2004, 06:46 PM)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin--> Is the xp firewall any good? <!--QuoteEnd--> </td></tr></table><span class='postcolor'> <!--QuoteEEnd-->
    I haven't tried it, but it feels odd to have the same OS guarding your net connection that left so many ports unprotected in the first place.
    Off Topic Disagree Agree Awesome
  • pardzhpardzh Join Date: 2002-10-25 Member: 1601Members
    With ICF on every one of the ports that ShieldsUp! probes is stealth.
    Off Topic Disagree Agree Awesome
  • ScinetScinet Join Date: 2003-01-19 Member: 12489Members, Constellation
    <!--QuoteBegin--Duff-Man+Jan 4 2004, 08:30 PM--></span><table border='0' align='center' width='95%' cellpadding='3' cellspacing='1'><tr><td><b>QUOTE</b> (Duff-Man @ Jan 4 2004, 08:30 PM)</td></tr><tr><td id='QUOTE'><!--QuoteEBegin--> With ICF on every one of the ports that ShieldsUp! probes is stealth. <!--QuoteEnd--> </td></tr></table><span class='postcolor'> <!--QuoteEEnd-->
    On my comp, ShieldsUp! says that ICF has left the following ports open:

    135 - RPC port
    139 - NetBIOS port (this is not very nice)
    1025
    1028

    Also, the computer accepted a preliminary connection from an unknown computer. NetBIOS conn failed, though, but it doesn't prevent the reading of the MAC address in any way. With a full port scan, I can see that most of the ports are closed, but none are stealthed. Is there any way to adjust ICF?
    Off Topic Disagree Agree Awesome
Sign In or Register to comment.