comp.security.firewalls archive
Re: The Dreaded Personal Firewall
Date: Sun Jan 29 2006 - 15:35:32 CET
ohaya wrote:
> > So, it appears that the true role of a personal firewall would be to
> > control outgoing connections.
>
>
> Hi Brad,
>
> The above is not totally the case. A NAT or any other kind of
> router/network firewall would protect your "inside" network at the
> "perimeter" of your inside network from traffic from the "outside"
> network, but that router or network firewall would not do anything to
> protect any machines on the inside network from any other machines on
> the inside network. If a threat ever got onto one of the machines on
> your inside network, it (the threat) would be free to attack any other
> machines on your inside network (remember Blaster?).
>
> That's one of the other main reasons for putting a firewall like Kereo
> or Sygate, or whatever, on the individual machines that are on your
> inside network, i.e., the per-machine firewall would prevent attack from
> other machines on your inside network.
>
Someone recommended a Sonicwall for our network. Looks good except
that it only has a 5 port switch. I can set it up between our switch
and the internet, but I would prefer that it have 24 ports. That would
machines on the inside network from each other, wouldn't it?
Received on Tue Feb 7 20:58:12 2006