Need for firewall when machines are behind a NAT router ?

Discussion in 'Virus Information' started by Dimitri, Dec 1, 2005.

  1. Dimitri

    Dimitri Guest

    I don't sterilize my keyboard, I don't wear gloves or a mask when I
    fill up my car with gas and all I want to know is what a firewall on a
    PC will protect if from if the machine is sitting with a private IP
    behind a NAT router.






    Dimitri




    "Fish have no need for fire extinguishers"
     
    Dimitri, Dec 1, 2005
    #1
    1. Advertisements

  2. Dimitri

    Max Wachtel Guest

    AKA Dimitri on 12/1/2005 in
    ******************Reply Separator*************************

    If you get infected it will alert you to outbound connections that are
    going on without your knowledge. Some firewalls like Zone Alarm have
    other functions like attachment filtering.
    max

    NEVER download files from anywhere unless it is from the website of the
    developer,manufacturer or some entity you trust. The developers
    websites ALWAYS have the most up to date files that haven't been
    tampered with by some third party who is "hosting"(read Leeching or
    Stealing) those files without permission.
    --
    Virus Removal Instructions: http://home.neo.rr.com/manna4u/
    Keeping Windows Clean: http://home.neo.rr.com/manna4u/keepingclean.html
    Windows Help: http://home.neo.rr.com/manna4u/tools.html
    Playing Nice on Usenet: http://oakroadsystems.com/genl/unice.htm#xpost
    To reply by e-mail change nomail.afraid.org to gmail.com
    nomail.afraid.org is setup specifically for use in USENET
    feel free to use it yourself. Registered Linux User #393236
     
    Max Wachtel, Dec 1, 2005
    #2
    1. Advertisements

  3. A firewall can protect a computer from being attacked by an infected
    computer connected to the same NAT router.

    Some firewalls (e.g. Norton, McAfee, ZoneAlarm, but not Windows
    Firewall) can block undesired outgoing traffic from an infected
    computer to the Internet.
    --
    Best Wishes,
    Steve Winograd, MS-MVP (Windows Networking)

    Please post any reply as a follow-up message in the news group
    for everyone to see. I'm sorry, but I don't answer questions
    addressed directly to me in E-mail or news groups.

    Microsoft Most Valuable Professional Program
    http://mvp.support.microsoft.com
     
    Steve Winograd [MVP], Dec 1, 2005
    #3
  4. In addition to the other answers, a firewall often gives more robust logging
    and detection, and allow for more granular rules. Many NAT routers tend to
    be simpler with fewer configuration options. Some firewalls like Windows
    firewalls can open up ports dynamically, which can be useful for some
    protocols like FTP that assign random port numbers on the fly. Some
    firewalls can inspect packet contents for malicious content or proxy
    connections to ensure that the content is legitimate instead of just letting
    all traffic through on port 80 including malformed traffic. Software
    firewalls can do some things that NAT routers and firewall devices cannot,
    such as identify and block application X from using port 80 while allowing
    application Y to use that port.
     
    karl levinson, mvp, Dec 1, 2005
    #4
  5. From: "Dimitri" <>

    | I don't sterilize my keyboard, I don't wear gloves or a mask when I
    | fill up my car with gas and all I want to know is what a firewall on a
    | PC will protect if from if the machine is sitting with a private IP
    | behind a NAT router.
    |
    | Dimitri
    |
    | "Fish have no need for fire extinguishers"

    As always I suggest blocking TCP and UDP ports 135 ~ 139 and 445 on *any* SOHO Router.
     
    David H. Lipman, Dec 1, 2005
    #5
  6. Dimitri

    Lance Guest

    My niece is not good at keeping her laptop virus-free. I'm always happy
    when she stops by and she can use my wireless network anytime, but my
    firewalls stay up.

    Lance
    *****

    Dimitri said the following on 11/30/2005 10:40 PM:
     
    Lance, Dec 1, 2005
    #6

  7. If you use a router with NAT, it's still a very good idea to use a
    3rd party software firewall. Like WinXP's built-in firewall,
    NAT-capable routers do nothing to protect the user from him/herself
    (or any "curious," over-confident teenagers in the home). Again --
    and I cannot emphasize this enough -- almost all spyware and many
    Trojans and worms are downloaded and installed deliberately (albeit
    unknowingly) by the user. So a software firewall, such as Sygate or
    ZoneAlarm, that can detect and warn the user of unauthorized out-going
    traffic is an important element of protecting one's privacy and
    security. (Remember: Most antivirus applications do not even scan for
    or protect you from adware/spyware, because, after all, you've
    installed them yourself, so you must want them there, right?)

    I use both a router with NAT and Sygate Personal Firewall, even
    though I generally know better than to install scumware. When it
    comes to computer security and protecting my privacy, I prefer the old
    "belt and suspenders" approach. In the professional IT community,
    this is also known as a "layered defense." Basically, it comes down
    to never, ever "putting all of your eggs in one basket."



    --

    Bruce Chambers

    Help us help you:
    http://dts-l.org/goodpost.htm
    http://www.catb.org/~esr/faqs/smart-questions.html

    You can have peace. Or you can have freedom. Don't ever count on having
    both at once. - RAH
     
    Bruce Chambers, Dec 2, 2005
    #7
  8. Dimitri

    pickluh Guest

    You can never be "to redundant" when it comes to taking measure to
    protect yourself. I'm pretty sure the only safe computer is unplugged,
    placed in a lead box, and buried 10' below ground
     
    pickluh, Dec 2, 2005
    #8
  9. Dimitri

    Leythos Guest

    No, if the box is buried in the ground, even at 10', bugs and worms can
    still get into the system :)
     
    Leythos, Dec 2, 2005
    #9
  10. Dimitri

    pickluh Guest

    touch'e Leythos
     
    pickluh, Dec 2, 2005
    #10
  11. From: "pickluh" <>

    | You can never be "to redundant" when it comes to taking measure to
    | protect yourself. I'm pretty sure the only safe computer is unplugged,
    | placed in a lead box, and buried 10' below ground

    Now -- Then you'll take the chance of Earth Worms :)
     
    David H. Lipman, Dec 2, 2005
    #11
  12. From: "Leythos" <>

    |
    | No, if the box is buried in the ground, even at 10', bugs and worms can
    | still get into the system :)
    |

    You beat me to it ! :)
     
    David H. Lipman, Dec 2, 2005
    #12
  13. Dimitri

    Alun Jones Guest

    The quote continues "... and even then, you can't really be certain".

    Security isn't an on/off switch - it's a process, a balancing act between risk
    and cost. What are you not willing to risk, and how much does it cost you to
    prevent or fix that risk?

    Alun.
    ~~~~

    [Please don't email posters, if a Usenet response is appropriate.]
     
    Alun Jones, Dec 2, 2005
    #13
  14. Not through the lead box ;-)

    Tom

    | In article <>,
    | says...
    | > I'm pretty sure the only safe computer is unplugged,
    | > placed in a lead box, and buried 10' below ground
    |
    | No, if the box is buried in the ground, even at 10', bugs and worms can
    | still get into the system :)
    |
    | --
    |
    |
    | remove 999 in order to email me
     
    Tom [Pepper] Willett, Dec 2, 2005
    #14
  15. Dimitri

    Leythos Guest

    Oh, come on, the lead box was cracked by the outsourced team that was
    hired from country X to place the box in the ground at 8.7% of the cost
    it would have taken to have a local crew do it. Now, there was the
    actual quality of the lead box, since it to was purchased from a company
    that had outsourced all Production, and then outsourced the QA
    department to another country, and then outsourced the materials instead
    of using local Lead, the product was only 4.9% of the prior quality that
    the local product could have been.

    The Bugs and Worms were local and not outsourced, they were stronger
    than typical outsourced bugs/worms and were able find flaws in the CASE
    and push through the lead.

    Better now :)
     
    Leythos, Dec 3, 2005
    #15
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.