firewall question

[ziggy]

hi, ain't been gettin my iboats fix for the last day and a half. my zonealarm firewall really hosed me good.... i think i have it gone. being that i'm here, seems to be a good sign.
now, my concern is.
i don't have zonealarm for a firewall now. what do i need to get?
i've got windows fire wall on + avg free on + i'm connected to a router.

i heard that a router can help protect you. though i don't know how or if it's true.

any suggestions... assuming i can get back to iboats to read it... sure hope i got za gone. i couldn't do anything. and that bummed me out...

 

[NelsonQ]

Re: firewall question

Ziggy

Most routers have basic firewall capabilities included but it will depend on the device you have. (Actually all routers have the ability to block or control network traffic, so when I say they have the capabilities, I'm referring to software that simplifies the administration and configuration of these features)

Out of the box I believe it doesn't block anything by default. You need to configure what you want to block (what do you want to block?) But, be careful as you can lock yourself out if you're uncertain of what you're changing.

Start by connecting to it and see what is configured? Did your Internet provider install it? If so, ask them for assistance as they'll know its specific configuration better than anyone (I hope!)

AVG will handle viruses/adware type infections.

Windows Firewall will do the basic stuff and perhaps what you're looking for. (difference is Windows Firewall will protect your PC, but you need to enable it on every machine you want to secure)

Wish I in front of it Ziggy, I could help you on this one but it'll be tough remotely.

 

[Big Bubba]

Re: firewall question

Hello to you,
If your using a wireless router you need to select WEP or WPA for your security settings. Of the two WPA (Wi-Fi Protected Access) is better than WEP (Wired Equivalent Privacy). With WPA you create the password that you think will be secure. I would use a combination of letters and numbers and special characters to make the password harder for the intruder/attacker from accessing your network. That will keep folks off your network because they have to know a key code/paswword to access the router to get on the network but if you have nothing then all kinds of folks will try to connect to your network. Hope this helps you, Bob

 

[ziggy]

Re: firewall question

i liked the way za seemed to block attacks before they got to my computer. but i've had trouble with it before. enough so that i'm looking for something else.
i'll look into configuring my router. it's a linksys wireless-G 2.4ghz broadband router. i'm the only computer on it. used to have my boys computer on it too, but he turned 19 and flew the coop, ya know how that is.. so it's just me.

what i want to block are i guess people (hackers, virus, adware, spyware) trying to access my computer. i felt pretty good about za doing that, but like i said. it's getting to be hard to get along with.

no my isp did not install my router. i just went down and got one at the store. me and the boy installed it.... these darn computers can really get the best of ya. and i do have info on my computer i must access. za was preventing me from doing so. i just want a firewall that lets me surf on the www. w/o fear of having my info compromised.... thanks for the help... gonna go see about the config of the router now...

 

[NelsonQ]

Re: firewall question

i liked the way za seemed to block attacks before they got to my computer. but i've had trouble with it before. enough so that i'm looking for something else.
i'll look into configuring my router. it's a linksys wireless-G 2.4ghz broadband router. i'm the only computer on it. used to have my boys computer on it too, but he turned 19 and flew the coop, ya know how that is.. so it's just me.

what i want to block are i guess people (hackers, virus, adware, spyware) trying to access my computer. i felt pretty good about za doing that, but like i said. it's getting to be hard to get along with.

no my isp did not install my router. i just went down and got one at the store. me and the boy installed it.... these darn computers can really get the best of ya. and i do have info on my computer i must access. za was preventing me from doing so. i just want a firewall that lets me surf on the www. w/o fear of having my info compromised.... thanks for the help... gonna go see about the config of the router now...

Not sure if you can pull the config off the router on those (installed mine 5 yrs ago so my mind is foggy on that)

But, let me pick through mine, look at the config and see if I can send you some suggestions.

I do this for a living just on a much larger scale with much more complex firewalls (running multiple data centers across the globe) so I'm sure I can help you on this one Ziggy.

How are you connected? Are you physically plugged into it or on a wireless connection?

 

[Big Bubba]

Re: firewall question

Hello to you again,
Also, you should install Avast 4.8 for home version anti-virus program, It works great at getting any virus that maybe on your computer removed and provides and alert if one is detected and what to do to remove it and also download Spybot search and destroy and also Lavasoft Adware 2008 those work great at removing all the bad spy ware malware. I think with locking down your wireless router using WEP/WPA, activating your Windows firewall, using Avast 4.8 antivirus, Adware 2008 and Spybot Search/destroy you should be good to go. How old is your computer system if it is old you should buy more memory or actually use the max memory recommended for your computer for all you systems to work great and have a faster computer all together. Good luck, Bob

 

[Big Bubba]

Re: firewall question

Als0, if you know the IP (Internet Protocol) address of your router that is how you access it internally. Mine is a Belkin wireless router with a IP of 192.168.2.1 for example and then when your in it there will be a list of things that you cand do on the left side of the screen to set security settings, she who is actually on your router thus your netwrok by looking at the list of Client's connected to your router, set up your DMZ, etc. If you don't know the IP address to access your router look on the router itself it maybe there and you just type that IP address onto the web browser for access into it. Hope this helps, Bob

 

[ziggy]

Re: firewall question

wow, lots of good info... thanks....

just looked for config on the router, no luck.
is is hardwired in. (it's a linksys WRT54G) seems to have to different ip addresses (guessing that is what the numbers are). one for the computer, one for the router...


i've heard of the avast before. think i'll google that...

so is the avg worthless... am i vulnerable right this minute? with only that and the windows firewall on?

 

[NelsonQ]

Re: firewall question

wow, lots of good info... thanks....

just looked for config on the router, no luck.
is is hardwired in. (it's a linksys WRT54G) seems to have to different ip addresses (guessing that is what the numbers are). one for the computer, one for the router...


i've heard of the avast before. think i'll google that...

so is the avg worthless... am i vulnerable right this minute? with only that and the windows firewall on?

I run AVG and it's ok. Latest v8.0 is slow and auto blocks too much crap. You need to decrapify its config, but I have to say it works. 7.5 was a nice stable version.

The address you have are the IP it gets from your ISP and your internal network addresses (defaults to 192.168.1.0 address spaces) Your router is most likely 192.168.1.1 I believe and the addresses are .101, .102 etc that get assigned automatically to your PC.

I have the same router. I'm still at work but will try to get a quick look at it tonight to provide some suggestions.

But with AVG and Windows Firewall, for most home systems, you're still vulnerable but most likely a less desirable target. I wouldn't be overly concerned unless you do a bunch of peer to peer networks (downloading/uploading) or click on the wrong links or open garbage email attachments. There is always those inherent risks but you should be fine for now.

 

[Big Bubba]

Re: firewall question

Hello again,
Try typing in the IP address and see what you access. When your in there it will say Linkys router if your on the router. Also, when you get in there I would do a firmware update check on that router to make sure you have the most up to date firmware version on that router. What will happen if you have that feature is go out on the web and see and if so will let you know and you install it with the instructions that is provided with the update. Thanks, Bob

 

[Xcusme]

Re: firewall question

Ziggy,

The default IP address of your WRT54G is 192.168.1.1. Open a web browser, Internet Explorer or Firefox and enter 192.168.1.1 on the address line (url line). hit return

A login dialog box should open to log into the router. The name , by default =admin , enter the password you changed when you first setup the router, you DID change the password, didn't you?? If you didn't change the default password , it should be = admin.

Be sure to change the default password, write it down and paste it to the underside of the router for future reference.

Don't use WEP for wireless security, I've cracked tons of WEP coded routers. Use at least WPA-PSK with at least an 8 character passphrase. Don't use dictionary words, mix it up , letters and numbers....write down this code too.

You can turn on remote administration of the router. This would allow a trusted tech to check/configure your router from anywhere. After he's done, you'd turn off the remote admin function.

 

[Big Bubba]

Re: firewall question

Also, make sure you keep your Windows operating system updated, updated, updated with the current security patches, hotfixes, service packs etc. the second Tuesday of each month new updates come out and I just did my computer tonight with 8 new updates to be exact. If you go to start you should see a microsoft windows update icon and click on that and it will open up on-line on Microsoft Windows updating page and then you select recommended express updating and it will do its updating thing then it will tell you that you need to install a certain number of updates and then you install it. After the install you might need to reboot your computer for the updates to take effect. These updates fill up security vulnerability holes that Microsoft determines could allow an attacker to take control of your computer and that is why they send out updates each month or every second Tuesday of the month. Take care, Bob

 

[ziggy]

Re: firewall question

whew, you guys are way ahead of me in computers.... i know how to turn mine on.....
i've not typed in my ip yet. gonna do so in a few. see what happens.
on the microsoft updates. i do understand the importance of these and did just an hour ago update with the latest. i only got 5 though. i do keep it updated.

i'm scanning with avg now. since my loss of za. i've noted many more tracking cookies being caught by avg....

 

[NelsonQ]

Re: firewall question

Ziggy

Once you`ve completed you scan and cleaned up, check your Windows Firewall settings.

Record the list of exceptions and post them. If its enabled, and with limited exceptions, you should be fine without touching your router's security configurations.

Then with AVG running in real time scanning mode, you should be ok.

I looked at my Linksys, you can't pull the config off it that I can see that's useful (you can back it up, but it appears to be in format not readable in a normal document viewer.)

Unless you want to get into detail specifics of limiting who can access it via wireless or internally, I'd avoid changing the security settings on that router as you may end up blocking more than anticipated.

 

[captquest]

Re: firewall question

I agree that the best fire wall is a hardware like a router. I like Sygate free version for a software firewall.

http://www.download.com/1770-2001_4-0.html?query=sygate&tag=srch&searchtype=downloads

I have been gaming and playing with puters for about ten years. The average home user can get all they need FREE! Read this thread, lots of good info here.
http://www.bleepingcomputer.com/forums/topic34773.html

 

[v1_0]

Re: firewall question

Ziggy,

I used ZA for quite some time, until it seemed to break after a windows update (XP). At that point, I had to do much like you: shut it down to go anywhere. But, i felt naked so looked around and found COMODO firewall. They have the same model as ZA - free 'base' version, pay-for 'professional' version, etc. Seems to be very similar in functionality as well.

As to your firewall/router, one big, important suggestion: make sure you change the admin password.
If you google the router model number and 'default password', you will come up with pages and pages listing routers, their default IP, and their default password. Anyone can break into your system if you leave the defaults alone. Other than that, it can protect you from things trying to get to you off the internet. But, that is only half the story: you also need to make sure that you know what your computer is doing! That is why the second firewall (software) on the computer is important. If you happen to download something bad, and it 'dials home' - your firewall/router will probably be very happy to let it out, as it is usually set up to be permissive in outgoing communication. ZA/Comodo will flag the outgoing com and allow you to stop it...

-V

 

[ziggy]

Re: firewall question

thanks for all the help folks. with personal help from a fellow iboater, i do now have my router configured, and password changed. so i feel better... still trying to decide what to do about the lack of a soft firewall though..... theses firewalls all seem to have their drawbacks it seems. thanks for the suggestions as to places to look, the more the merrier. i'm still looking at some of the suggestions... so far, the best firewall i've come up with is to turn off my modem. but that only works when i'm not using my computer on line... so my delema continues as to what or any software to use.... thanks again...

ps, i download very little..... i don't open any mail i don't know who it's from... and i only surf iboats, .... well, mostly iboats.....

 

[NelsonQ]

Re: firewall question

ps, i download very little..... i don't open any mail i don't know who it's from... and i only surf iboats, .... well, mostly iboats.....

Ziggy, with the stuff you have plus the Windows Firewall you should be fine.

I wouldn't worry too much.

 

[NoKlu]

Re: firewall question

Ziggy, when I got my first pc I took the advice from several people about all of the free protection available on the net and it worked fairly well. The thing I found was with the free stuff you are always manualy updating and scanning with several programs and I found it a PITA. In the last year i paid for Kaspersky internet security and I highly recomend it. There is ZERO maintenance. Set it and forget it. I kept all of the free stuff on just as a backup to see how KIS was working and have now deleted them all. Kaspersky was blocking all that crap from getting in and the scans were a waste of time. I have never had a problem with the included firewall, it's just there and it works. I bought 1 year for $8. from ebay and it's the best money I've spent on my puter.

 

[v1_0]

Re: firewall question

Ziggy, with the stuff you have plus the Windows Firewall you should be fine.

:eek
Windows firewall???
:eek

Hmmm... How can I describe windows firewall? Oh, here:

With windows firewall, a program on your PC communicates out over the internet. Windows firewall asks: Hey, should I *keep* letting this program send things out?

A true firewall would ask first, before the program is allowed to communicate.

Now, if we are talking about a program that has gathered whatever information you have on your hard drive, and is dialing back to its 'controller', you can see where the windows firewall reminds me about that joke about the Seagull and the toilet paper.

-V