Hardware firewalls are important because they provide a strong degree of protection from most forms of attack coming from the outside world. Additionally, in most cases, they can be effective with little or no configuration, and they can protect every machine on a local network.
A hardware firewall in a typical broadband router employs a technique called packet filtering, which examines the header of a packet to determine its source and destination addresses. This information is compared to a set of predefined and/or user-created rules that determine whether the packet is to be forwarded or dropped. A more advanced technique called Stateful Packet Inspection (SPI), looks at additional characteristics such as a packet’s actual origin (i.e. did it come from the Internet or from the local network) and whether incoming traffic is a response to existing outgoing connections, like a request for a Web page. Most hardware residential firewalls have an Achilles’ heel in that they typically treat any kind of traffic traveling from the local network out to the Internet as safe, which can sometimes be a problem.
Consider this scenario: What would happen if you received an e-mail message or visited a website that contained a concealed program? Let’s say this program was designed to install itself on your machine and then surreptitiously communicate with someone via the Internet — a distributed denial of service (DDoS) attack zombie or a keystroke logger, for example? Trust me; this is by no means an unlikely scenario.
To most broadband hardware firewalls, the traffic generated by such programs would appear legitimate since it originated inside your network and would most likely be let through. This malevolent traffic might be blocked if the hardware firewall was configured to block outgoing traffic on the specific Transmission Control Protocol/Internet Protocol (TCP/IP) port(s) that the program was using, but given that there are over 65,000 possible ports and there’s no way to know which ports a program of this nature might use, the odds of the right ones being blocked are slim.
Moreover, blocking too many ports would almost certainly adversely affect your ability to use some programs (many games, for instance). Also, some broadband router firewalls don’t even provide the ability to restrict outgoing traffic, only incoming traffic.
Advantages of Software Firewalls:
Now consider what a software firewall might do in the aforementioned scenario. When you first set up a software firewall, you can specify which applications are allowed to communicate over the Internet from that PC. Programs that aren’t explicitly allowed to do so are either blocked or else the user is prompted for confirmation before the traffic is allowed to pass. Therefore, it would likely intercept this kind of traffic before it left your computer.
Another potential scenario where a software firewall would be useful is in the case of an e-mail worm with its own e-mail sever, like the recent “SoBig” worm. Its built-in mail server could attempt to send mail on the valid Simple Mail Transfer Protocol (SMTP) port (25), which would probably pass through the router because of its trusted origin.
On the other hand, a software firewall could be configured to only allow Microsoft Outlook to use port 25 (assuming Outlook is your e-mail client). Any attempt by another application to use the port would be dropped, or blocked pending user confirmation. For that matter, the application’s attempt to use any port would be blocked if the firewall was configured that way.
By comparison, a hardware firewall that had the ability to filter outgoing traffic might allow you to block most kinds of traffic from a particular PC, but it wouldn’t be able to flag you and alert you to repeated attempts to infiltrate your computer.
One obvious downside to software firewalls is that they can only protect the machine they’re installed on, so if you have multiple computers (which many small offices do), you need to buy, install, and configure a software firewall separately on each machine. This can get expensive and can be difficult to manage if you have a lot of computers.
But the fact of the matter is that software firewalls generally offer the best measure of protection against certain types of situations like Trojan programs or e-mail worms. Speaking of which, a firewall isn’t the only protection method available to you. Whether you end up using a software firewall or a hardware firewall, you should always supplement it with anti-virus software.
A good anti-virus package is just as important as a firewall, and I would seriously suggest that you invest in a good one (I’m partial to both Norton and McAfee myself). However, keeping your virus definitions updated is far more important than which program you use. I cannot stress the importance of this enough. Making sure your definitions are current is absolutely critical to maintaining your protection. Many Anti-virus programs today can be configured to automatically update themselves, so you have no excuse for not maintaining them.
The bottom line is that with any home-office broadband connection, a hardware firewall should be considered a bare minimum, and supplementing it with a software firewall on one or more computers (and don’t forget anti-virus software) is almost always a good idea.
I really enjoyed reading your articles. Your website layout is also very nice and easy to maneuver. I will definitely be back to read more of your content. Thank you!
Awesome! I came across this post by mistake, I was surfing around Bing for goji berry when I came upon your website. I’m lucky I found it. Just what I was searching for. Subscribed to your RSS feeds, be back in a day or two
I can’t subscribe to your RSS feed. Can you help?
Dammit!
I just entered a long and comprehensive comment, but when I tried to send it my FireFox did something really weird.
Was it somehow saved or should I retype it all again?
I downloaded Tom Clancy’s Ghost Recon Advanced Warfighter 2 about a week ago and, despite the fact its an old game, its the best PS2 game in my opinion
Wonderful website. I like it very much. I will be back to read more of your work.
I admire your blog , it has of lot of information. You just got a perennial visitor of this site.
site bookmarked and shared on facebook, I’ll post a feedback on my blog asap
Hello, awesome site. Want to get money for blogging? Check out: http://bit.ly/PaidBlogging
Great article-would like to publish in my free newsletter for seniors but was wondering if the information applies to Washington residents as well?
I randomly browse blogs on the internet, and I find your article to be very informational. I have already bookmark it on my browser, in order that I can view your weblog submit again later. Additionally, I’m questioning whether or not your weblog is open for hyperlink change, as I actually wish to change hyperlinks with you. I do not normally do that, however I hope that we are able to have a mutual hyperlink exchange. Let me know and have a terrific day!
Excellent read, I just passed this onto a colleague who was doing a little research on that. And he actually bought me lunch because I found it for him smile. So let me rephrase that: Thanks for lunch!
i cant beleive i stumbled onto your post..thanks so much!!! i am going to have to sign up 2 ur RSS feed so i can keep updated with your post…thanks Again
Hi there! Apologies regarding my personal awful English. When i have came with your own site as well as I seriously like the design and style. Could you actually explain to me personally wherever could acquire the template like this kind of? thank
The Amyloidosis Foundation estimates that approximately 3,000 people are diagnosed with amyloidosis each year in North America and that blood cancers overall have increased more than 40% in the last decade.
Hi, I’m very interested in Linux but Im a Super Newbie and I’m having trouble deciding on the right distribution for me (Havent you heard this a million times?) anyway here is my problem, I need a distribution that can switch between reading and writing in English and Japanese (Japanese Language Support) with out restarting the operating system.
I was looking for crucial information on this subject. The information was important as I am about to launch my own portal. Thanks for providing a missing link in my business.
What a great website! I like the design, the layout, the colors and your content!
Hi, I’m very interested in Linux but Im a Super Newbie and I’m having trouble deciding on the right distribution for me (Havent you heard this a million times?) anyway here is my problem, I need a distribution that can switch between reading and writing in English and Japanese (Japanese Language Support) with out restarting the operating system.
ЎGracias! Ahora me irй en este blog cada dнa!
- Doggy
I randomly browse blogs on the internet, and I find your article to be very informational. I have already bookmark it on my browser, in order that I can view your weblog submit again later. Additionally, I’m questioning whether or not your weblog is open for hyperlink change, as I actually wish to change hyperlinks with you. I do not normally do that, however I hope that we are able to have a mutual hyperlink exchange. Let me know and have a terrific day!
Hola,
http://www.computermechanic.org – da mejor. Guardar va!
Ivan
To be incredible is to be misunderstood.
Sent from my iPad 4G