FIREWALL
#1
On Win7 here, and I dont use the Win firewall - in fact entire 'Security Center' is turned OFF.

I've been looking for a good software firewall.

I was using Comodo, but it pizzed me off a while back when I blocked something, and it would not let me find out what it was to UNblock it!

Currently with PrivateFirewall, which essentially started doing the same thing. Some M$ crap would pop up. I would reflexively kill it, but only to discover that when i went back to further check it out, it wasnt on its list.

Zonealarm is out of the question. It effed up a system years ago, and I consider it toxic waste now.

What I am looking for is something that will provide both application security and complete internet filtering. PF is annoying in that it does not provide the option to disable internet communication under its 'APPS' category.
Plus in order to bind the VPN to the TAP connection I must do it apparently port by port (I can be wrong about this!) .

I dont know if its relevant or not, but my network is behind 2 NATs.
Reply
#2
http://bfy.tw/GyPQ

Sid edited Mar 07, 2018 22:11 pm this post because:

DON'T be using redirectors on here. People have a right to know where the fuck you are sending them. Try deceiving people again and I will assume your intent is malicious.

And don't reply to any post here with "google". This is a discussion forum. If you have nothing to say, say nothing.

Reply
#3
(Mar 06, 2018, 15:39 pm)spikemite Wrote: Zonealarm is out of the question. It effed up a system years ago, and I consider it toxic waste now.

I had the same experience and also wouldn't touch it again.
Reply
#4
I like specific tools for each job - a router firewall and a PC app monitor, but my ISP provides me with a password-locked box.

If your router is DD-WRT compatible maybe it's worth a try. IMO most software firewalls screw up because they try to do it all; users just click on "dismiss" without thinking, automated "learning mode" is risky, poor anti-virus, and more.

On the other hand, the "block everything not whitelisted and don't pop-up until I come back" mode is useful. One can run on game mode at all times and just check the logs to fix (open ports for) a new app not working. Just whitelisting as "free pass" like some firewalls do, letting an app to use all IPs, ports and protocols, is another screw up.

One can do geographic filtering: Get a list of IP ranges by region and block the ones you don't need or deem too risky. Not exactly safe and sound, specially for torrenting. Also block ports no matter what app or IP. Filter lists are the relevant thing.
Reply
#5
(Mar 07, 2018, 06:47 am)Mr.Masami Wrote: http://bfy.tw/GyPQ
LMGIFY ?

The problem with google is that berween ads and hype, and postings on general software site-the info is mostly useless.

I'm looking for advice on a site where folks presumably deal with boogers on a regular basis and know how to deal with them, without requiring Micro$oft Support.

(Mar 07, 2018, 13:43 pm)dueda Wrote: I like specific tools for each job - a router firewall and a PC app monitor, but my ISP provides me with a password-locked box.

If your router is DD-WRT compatible maybe it's worth a try. IMO most software firewalls screw up because they try to do it all; users just click on "dismiss" without thinking, automated "learning mode" is risky, poor anti-virus, and more.

On the other hand, the "block everything not whitelisted and don't pop-up until I come back" mode is useful. One can run on game mode at all times and just check the logs to fix (open ports for) a new app not working. Just whitelisting as "free pass" like some firewalls do, letting an app to use all IPs, ports and protocols, is another screw up.

One can do geographic filtering: Get a list of IP ranges by region and block the ones you don't need or deem too risky. Not exactly safe and sound, specially for torrenting. Also block ports no matter what app or IP. Filter lists are the relevant thing.

I am not really concerned about incoming connections - I have the majority of services, including protocols turned off via services.msc. Even boogers that get in have a problem getting out.

The second router is an old netgear with a couple of meg of DDWRT capability. But as I do have a server sized switch here, my next step as far as routers go, would be to turn an old XP box into a router with Linux on it.

Currently I am more interested in the software level of preventing internet access by anything that does not explicitly need it. Ideally I should sandbox everything or put it in a VM, but I dont find that practical when a decent firewall should provide what I need. PrivacyFirewall is decent, and I can turn off that nasty auto-whitelisting.

But I am looking for something a little more finegrained, that acts as a firewall, and nothing more. No AV, no other 'protections'. IPChains, but with a decent and comprehensible front end.
Reply
#6
https://tinywall.pados.hu/

This is a front end for the Windows 7 firewall.

It's a pretty neat tool. You can set the firewall to "learn" connections, and you can restrict programs to be accessible only in the local area network.

A few flaws: Very rigid, it will cut connections very strictly and file and print sharing will not work properly in the sense that you have to type the name of the computer and not select it from the Network section.

Just a tip: if you' need to add another folder to share, export your Tinywall settings to a file and uninstall the program before you do it. If you don't, you just can't add the share.

I went back to using Zonealarm since this piece of software is very tricky and restrictive, but try it. There is no paid version, so don't feel cut-off.
Reply
#7
I linked you to google because all this lame firewalls don't really offer anything different than user interface.

(Mar 07, 2018, 20:32 pm)spikemite Wrote: But I am looking for something a little more finegrained, that acts as a firewall, and nothing more. No AV, no other 'protections'. IPChains, but with a decent and comprehensible front end.

What's wrong with M$ builtin Firewall ? It does just that perfectly.

I'm little confused on your requirements because earlier you wrote:

spikemite Wrote:What I am looking for is something that will provide both application security and complete internet filtering.

So you need basic firewall or complete suit with behavioral detection ?

If you want something more you should look up IDS like Snort:

https://www.snort.org/

Don't know if there's a Windows version but if not, you should easily find similar alternative to it as there are plenty of them.
Or make a linux box as you mentioned earlier with this software, that would be good option.

@edit: There is Windows version as well.
Reply
#8
(Mar 07, 2018, 20:32 pm)spikemite Wrote: I have the majority of services, including protocols turned off via services.msc.
But I am looking for something a little more finegrained, that acts as a firewall, and nothing more.

Sounds like you want a ruggerized and fit tight ship; consider running Wine (Windows-like environment) on top of a hard Linux?

Or maybe PeerBlock, it was suggested before on another thread here. Sure it's an old horse but has an audience.
Private Firewall reminds me of the old times tools like ZoneAlarm and Seagate Personal Firewall, but too finnicky for my like.
I always liked GlassWire; it grew well into maturity, but for you the Pro version should appeal more than the Free model.

(Mar 07, 2018, 20:56 pm)RobertX Wrote: https://tinywall.pados.hu/
This is a front end for the Windows 7 firewall.

Sounds good but small developer with closed source... Firewalls are profilatic, lotta trust.
Does it stops apps from adding exceptions during installation? That is the worst problem of any Firewall.

(Mar 08, 2018, 06:42 am)Mr.Masami Wrote: https://www.snort.org/

Guess I remember seeing this pig many years ago... Maybe time to try again.
Reply
#9
I was using it long time ago as well, when I was hosting game server for CS:S, it was doing really good job back then.
Reply
#10
(Mar 08, 2018, 17:39 pm)dueda Wrote: Does it stops apps from adding exceptions during installation? That is the worst problem of any Firewall.

Not unless you put it in learning (i.e. blue) mode.

I don't know, I know I just went back to Zonealarm.

It's by no means a bad firewall, but it's not for everyone.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  What Firewall ok for torrenting ? WW3hasstarted 8 15,016 Mar 25, 2020, 16:17 pm
Last Post: waregim
  Firewall, Redux. waregim 2 12,281 Oct 29, 2019, 02:36 am
Last Post: waregim
  Vegas pro 13 firewall block Driftersrift 1 13,059 Mar 08, 2015, 16:27 pm
Last Post: LowOrbit



Users browsing this thread: 4 Guest(s)