Router Firewall picking up a lot of issues
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Other forums
- :
- Tech Help - Software/Hardware etc
- :
- Re: Router Firewall picking up a lot of issues
Router Firewall picking up a lot of issues
18-07-2009 10:22 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I'm relieved that these are now being picked up by the firewall on the router ( but worried that in the past this hasn't been happening).
I have zone alarm on my PC but there are a number of other machines and devices connected to the router so this could be an issue with them. They don't have anything other than windows firewall on the PCs
My plus-net firewall is on (low because i need VPN to connect to work).
Should I be worried and is there anything I can do to investigate this further?
How can I investigate the ports that are listed?
Re: Router Firewall picking up a lot of issues
18-07-2009 10:42 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
All it means is someone is looking for a way into your network, and the only way in is through an open port on your firewall (if you have one that is). WRT it not being reported before maybe the update added this "feature".
More attacks come from internal to a network than from outside, a compromised website, a virus in a program run from a cd/usb stick/<i>floppy disk</i>.
Re: Router Firewall picking up a lot of issues
18-07-2009 12:55 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Even if it gets past that, you have to be running a server on that port in order to respond to it.
So port scans are pretty innocuous - although Windows likes to run a few servers that can get
hacked by this kind of activity.
"In The Beginning Was The Word, And The Word Was Aardvark."
Re: Router Firewall picking up a lot of issues
18-07-2009 1:34 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Most modern attempts to hack your computer rely on security holes in the software on your computer, particularly out-of-date software when you have not kept up to date with the latest Microsoft updates, updated your web browser to the latest version etc etc. Or they try to trick you into installing malicious software yourself, on the pretext that it will give you some benefit.
Re: Router Firewall picking up a lot of issues
18-07-2009 2:13 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
http://www.helium.com/items/1424052-is-the-windows-xp-firewall-enough-to-to-the-job
I would always recommend a third part firewall and this test is a good starting point http://www.matousec.com/projects/proactive-security-challenge/results.php
Note that there are three excellent free firewalls
Comodo Internet Security
Outpost Firewall Free 2009
Online Armor Personal Firewall 3.5.0.14
Re: Router Firewall picking up a lot of issues
18-07-2009 4:03 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
There are two reasons why someone might want to block outbound internet connections:
1) They want to know when their computer has caught malware and some unidentified program starts attempting outbound connections.
2) They are a control freak.
In either case the the outbound firewall will alert you with a query as to whether such-and-such a program/process can access the internet. You are unlikely to be given any clues about what this program is supposed to do, just the name of the application. If you are a computer expert you stop what you are doing and spend the next 15 minutes researching what is going on. If you are a typical computer user you just authorize the program to access the internet because you haven't a clue about what is going on.
So the typical computer user derives no benefit from the outbound firewall. The more expert computer user may derive some benefit but at a the cost of a lot of their time. This time might be better spent in tightening their computer security so they don't get the malware in the first place. Only the control freak wins.
Re: Router Firewall picking up a lot of issues
18-07-2009 5:00 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
As far as I am concerned relying on a single line of defence (your anti virus) to fully protect you is bad practice and all the systems I have set up have used an integrated security package which doesn't throw up loads of alarms but just gets on with the job. It is only if you put it in full interactive mode that you get many or indeed any popups asking for a decision.
For example I set up a complete novice with Kaspersky Internet Security (currently version 2009) set in automatic mode and it does everything silently because it has an extensive list of known good applications and it automatically stops any others and she has had no problems at all.
just to add - this is from Microsoft describing the Vista Firewall http://www.microsoft.com/windows/windows-vista/features/firewall.aspx
Quote More advanced than the Windows Firewall in previous versions of Windows, the firewall in Windows Vista helps protect you by restricting other operating system resources if they behave in unexpected ways-a common indicator of the presence of malware. For example, if a component of Windows that is designed to send network messages over a given port on your PC tries to send messages by way of a different port due to an attack, Windows Firewall can prevent that message from leaving your computer, thereby preventing the malware from spreading to other users.
Re: Router Firewall picking up a lot of issues
19-07-2009 8:12 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I also doubt that having Kaspersky Antivirus leaves me less protected than having Kaspersky Internet Security. If the security software spots that a program is malicious then it will quarantine it. If the software misses a malicious program then what reason does it have for not allowing it outbound internet access?
I concede that the Vista firewall may be a little stronger than the XP firewall but:
1) Viruses that subvert Windows programs are in the minority so most of the time this extra strength won't help
2) The benefit of this extra strength is to protect others from your infected computer, not to protect you.
Re: Router Firewall picking up a lot of issues
19-07-2009 8:30 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Interesting debate on TP firewalls. I've used Zonealarm's free product for a while and have found it quite unobtrusive after the initial training period. I
Re: Router Firewall picking up a lot of issues
19-07-2009 9:59 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Groundsman, how did you decide which programs should be granted internet access and which should not during the initial training period? What would you do now if a program you did not recognize popped-up asking for internet access?
adie:quote
Re: Router Firewall picking up a lot of issues
19-07-2009 10:12 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I have had some recently that Zonealarm blocked without asking me, they told me quickly, it is a convoluted exercise to get them released as a friend
Re: Router Firewall picking up a lot of issues
19-07-2009 10:27 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: pierre_pierre any sensible person would check to find out....
No, any sensible computer expert like you or I would check to find out. The typical computer user does not have the time, expertise or computer self-confidence to do this.
So you or I would spend, say, an average of 15 minutes per event checking out what is going on. The end result would be either that we conclude the program is benign or we conclude our other security software has failed to spot a piece of computer malware. I have better things to do with my time, not least making sure my computer security is good enough to stop malware getting onto my computer in the first place.
Re: Router Firewall picking up a lot of issues
21-07-2009 5:27 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
In terms of my expertise level - I'm not a total novice but I'm not an expert either.
Everyone will have a different view - the trick is to make an informed decision based on your individual needs I think.
With Free software you have to expect the odd hiccough so I forgave Zonealarm for the 2008 incident you mentioned. Their forums gave me confidence that they were working on a solution and a work around was immediately available. Some like AVG were less good about sorting out their problems so I moved on to another AV solution (Avast) if that gave me headache I might even pay for Kaspersky
Sounds like your on a crusade RR; you obviously feel strongly about this.
Re: Router Firewall picking up a lot of issues
21-07-2009 6:37 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: pierre_pierre any sensible person would check to find out.
Any sensible person would wonder why each PC needed to run anti-virus software at all.
It's shutting the stable door after the horse has bolted.
If you suspect that you PC is infected, you don't just slap a patch on to try and limit the effects of the virus.
"In The Beginning Was The Word, And The Word Was Aardvark."
Re: Router Firewall picking up a lot of issues
21-07-2009 7:06 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
its bad enough on my Zonealarm stopping routine programs, and then having to release them, but RR seems to be saying you should not have to check just let it stop all
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Other forums
- :
- Tech Help - Software/Hardware etc
- :
- Re: Router Firewall picking up a lot of issues