Forum     

Go Back   Digit Technology Discussion Forum > Community > Tutorials
Register FAQ Calendar Mark Forums Read

Tutorials This section offers tutorials and How to's on just about anything related to computers and IT. Note: All tutorials are courtesy the posters and not verified by Digit

Closed Thread
 
LinkBack Thread Tools Display Modes
Old 04-03-2005, 01:15 AM   #1 (permalink)
Alpha Geek
 
Join Date: Feb 2004
Location: Belgaum
Posts: 745
Default The basics of a firewall

This is not a indepth article about firewalls but simple basic stuff.I've concentrated on windows based environment apart from the general case.In my next article I'll try my hand with GNU/Linux as the base OS after I have a handson experience with it.Raves & rants are welcome.:bowtie:

What is a firewall?
A firewall may be a standalone system,a software application or a hardware device that blocks/permits traffic,prevents unauthorized users or malicious traffic from accessing a network or a system.It acts as a barrier or a membrane between two or more networks.
The primary job of a firewall is to secure the inside network from the outside[it can be another network or more often the internet].Depending upon the policies or access control lists configured in the firewall,it can monitor inbound/outbound traffic & plus more.

Do I need a firewall?
Thats the question you should be asking yourself.With anyone who had been using a firewall with logging capabilities knows the amount of port scans you get on a day to day basis.Thus there is a need to block inbound traffic.The general tendency among home users with a single host or a small network is to use a software firewall on each host.One thing to consider here is if you are well versed with what goes at the OS level then you certainly dont need a separate freeware/commercial firewall,the windows firewall very well does the job for you.Oh yes I know it monitors inbound connections & not outbound but the fact remains if you have a knowledge of program control at the host then why do you need a separate firewall other than the windows firewall? After all its your computer/s,you should be knowing what is running & accessing the internet.

One program that I would like to strongly suggest is Fport.It shows you the mappings of the ports & IP addresses to their respective applications which are accessing the internet.

Fport

If you are getting paranoid then you are better off with a separate application based firewall.As most software firewalls ask for permission when a program is trying to access the internet.Where as if you only have a router acting as a firewall then it cant do much if malicious programs try to access the internet.For example if you already have a trojan in your system then it wont block or notify you of the happenings since its designed to consider everything that goes out of the system as legit.It does a very good job of blocking inbound traffic though.

There are different types of firewalls which serve nearly same purpose but for different audiences.The two most common types are:

1.Network level firewalls:These are standalone boxes & are much more sophiticated with loads of features.To mention a few,SPI[Stateful Packet Inspection],Deep Packet Inspection,Logging Capabilities etc.They usually run on proprietary Operating system such as the Cisco series,they run on the Cisco IOS[Internetwork Operating System]

2.Application level firewalls:Software firewalls,application level proxies come under this category.Apart from the regular huff & puff they offer a few nifty features such as content filtering,blocking unwanted hosts.


Proper Implementation:
Just placing the firewall without making full use of it doesnt serve its purpose very well.Deciding on what rules need to set for a single host or a network of computers,proper screening of the inbound/outbound policies is needed.Blocking all traffic through the firewall & then allowing traffic which is required as per the policies is considered to be a best practice.This implies for a application level firewall too.

Software V Hardware Firewall
A software firewall has to be installed on each host on the network & if the number of hosts are more then it becomes a cumbersome job.Also the amount of configuration needed for each hosts firewall setting is a pain in the neck.Even having a proxy server software installed to be a gateway has much to do,for example having a policy such as tunneling HTTP traffic through the proxy demands the network administrator to configure each clients browser settings.

A hardware firewall acts as a gateway to all the computers inside the LAN.Configuring & making changes applies to the gateway only.For example say the policy is to block all inbound connections to port 21,simply blocking port 21 at the firewall gateway will block all inbound traffic that is directed to the ftp port 21 inside the LAN.

Which firewall to choose from will depend on the network & the amount of resources you got.
But for a small SOHO network may I suggest some freebie Linux distros which will do the job of a firewall in a jiffy.But you will need a separate machine for that purpose,even a old 386/486 machine gathering dust will do.

1.Smoothwall: http://www.smoothwall.org/
2.Clarkconnect: http://www.clarkconnect.com/info/
3.IpCop: http://www.ipcop.org/
The above are based on the GNU/Linux operating system & offer nifty feaures such as content filtering,web proxy,packet filtering.Much more than what a SOHO setup asks for.All the three have detailed documentation at their respective sites & also community forums for support & extra addons.They lack certain features like VPN which are only found in high class or commercial firewalls.
Although they cant be compared with the options available in the market but they offer valuable security to a single host or a small network.


Does having a firewall make me secure?
The answer is "no".Apart from having a well configured firewall the hosts in a network also need a equivalent & frequently updated anti-virus.Some NAT routers based firewalls also provide anti-virus scanning capabilities but that is like expecting too much of them.A standalone anti-virus application is designed for a single purpose only.Apart from the above it also takes some common sense on the part of the user to make use of the available resources in a proper manner keeping in mind the security aspect of the host/network.

Before I say good bye I will quote Duane Arnold: "The protection of the machine is a process and not a given".
__________________
The protection of a machine is a process & not a given -Duane Arnold.
www.Oobertech.net
Look ma my blog http://techhub.blogspot.com/
digen is offline  
Advertisements. Register and be a member of the community to get rid of them.
Advertisement

Old 04-03-2005, 09:15 AM   #2 (permalink)
In The Zone
 
Join Date: Feb 2005
Location: Anonymous
Posts: 204
Default

Source pls
h4xbox is offline  
Old 04-03-2005, 12:57 PM   #3 (permalink)
Alpha Geek
 
Join Date: Feb 2004
Location: Belgaum
Posts: 745
Default

Sure man..here it is: http://disco82.ecwhost.com/forums/viewtopic.php?t=196 .lmao
__________________
The protection of a machine is a process & not a given -Duane Arnold.
www.Oobertech.net
Look ma my blog http://techhub.blogspot.com/
digen is offline  
Old 04-03-2005, 01:20 PM   #4 (permalink)
Another Brick in the Wall
 
drgrudge's Avatar
 
Join Date: Jul 2004
Location: Dubai/Chennai
Posts: 3,026
Default

LOL... , diggy nice work there!
__________________
I Love Photography. I Love Aperture. I Love Mac.
drgrudge is offline  
Old 04-03-2005, 07:37 PM   #5 (permalink)
Human Spambot
 
Join Date: May 2004
Location: off to "never ever" land
Posts: 2,912
Default

lol h4xbox .. i think u need to give members like digen a lil more credit

nice worj diggy ...
i like the part abt smoothwall etc.. i needed a read up on that .. !
thanx again .
__________________
No Mercy, No Limits.
Oobertech.net - Keeping Knowledge Free
theraven is offline  
Old 05-03-2005, 12:06 AM   #6 (permalink)
In The Zone
 
Join Date: Feb 2005
Location: Anonymous
Posts: 204
Default

OK as u say spambot sir.. Thanx digen for the info.. I can give u a better idea of firewall but illegal links are not allowed ..so i dont wanna be banned once again
h4xbox is offline  
Old 05-03-2005, 12:12 AM   #7 (permalink)
Wise Old Owl
 
enoonmai's Avatar
 
Join Date: Oct 2004
Location: Parked diagonally in a parallel universe
Posts: 1,304
Default

Great work as usual, digen. I have compiled a tutorial on configuring ZoneAlarm Pro for Windows systems, but was hesitant to start a new tutorial when such a fine one on firewalls already exists. If you dont mind me posting it here and adding to your post, tell me so and I will put it up. Once again, great work!
__________________
Face it, kid! Provoking a reaction isn't the same thing as saying something significant - Calvin
A64 3000+@2.4G/Asus A8V-DLX/1G DDR400/BBA X800 XT PE/320G HGST SATA2
Playing FEAR XP/LSW2
enoonmai is offline  
Old 05-03-2005, 12:19 AM   #8 (permalink)
Alpha Geek
 
Join Date: Feb 2004
Location: Belgaum
Posts: 745
Default

^Dude what are you waiting for?Post the tutorial here right away.Thou shall obey my orders !

Quote:
I can give u a better idea of firewall but illegal links are not allowed ..so i dont wanna be banned once again
Very well dude but there is a difference.You will be posting illegal links as you said,I've compiled what I've learnt so far.I hope you get the separation between the two.
__________________
The protection of a machine is a process & not a given -Duane Arnold.
www.Oobertech.net
Look ma my blog http://techhub.blogspot.com/
digen is offline  
Old 05-03-2005, 12:29 AM   #9 (permalink)
Human Spambot
 
Join Date: May 2004
Location: off to "never ever" land
Posts: 2,912
Default

enoonmai why dont u post it as a followup to ur windows security tut ?
or even a new post ... that would surely get some notice !!! plz hurry nek kaam mein deri kis baat ki
__________________
No Mercy, No Limits.
Oobertech.net - Keeping Knowledge Free
theraven is offline  
Old 05-03-2005, 02:26 PM   #10 (permalink)
In The Zone
 
Join Date: Feb 2005
Location: Anonymous
Posts: 204
Default

I mean illegal not becoz its illegal but ..... 300 pages wont be offered for free ... thats all ...
h4xbox is offline  
Old 05-03-2005, 07:10 PM   #11 (permalink)
Human Spambot
 
Join Date: May 2004
Location: off to "never ever" land
Posts: 2,912
Default

Quote:
I mean illegal not becoz its illegal but ..... 300 pages wont be offered for free ... thats all ...
h4ck3r dude honestly ..
havnet u learnt anything being banned once ?
cant u just contribute to something for once in ur life without sayin "i know this , i know something better, but its illegal ?"
man grow up .. .seriously
__________________
No Mercy, No Limits.
Oobertech.net - Keeping Knowledge Free
theraven is offline  
Old 12-03-2005, 12:00 PM   #12 (permalink)
In The Zone
 
ramprasad's Avatar
 
Join Date: May 2004
Location: 00-1D-7D-5A-34-2E
Posts: 371
Default

Hi
Great work man...thanx a lot....


Regards,
Ramprasad
ramprasad is offline  
Closed Thread

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +5.5. The time now is 01:29 PM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2012, vBulletin Solutions, Inc.

Search Engine Optimization by vBSEO 3.3.2