Hardware Firewall?

[Ice Rich]

Hi all,

I was wondering if anyone here uses a hardwear firewall? Would you recommend one for a average internet user i.e general surfing, downloading, internet banking?

At the moment I use a WRT54GL router for so my family can connect via wireless but I connect directly on my desktop through it.

How much would a hardware firewall set me back?

Thanks

 

[Craig321]

I think it'd be an unnecessary expense for general surfing/downloading.

Comodo will do the trick, very light on the system and very good

 

[NicNac]

Why do I need a hardware firewall is the question you have to ask yourself. do you have naughty pics on your computer?

 

[Ice Rich]

Why do I need a hardware firewall is the question you have to ask yourself. do you have naughty pics on your computer?

I just find anti-virus/security software resource heavy and half the time I end up turning them off, which is a bit pointless.

tbh I am a bit unsure how it all works, would a hardware firewall be a one-off buy? I.e are there any linux based apps you can install on it rather then subscriptions?

Thanks

 

[Craig321]

If you're not wanting to limit outbound traffic on the computer then just enable the firewall on the WRT54GL and you'll be fine.

It won't limit any outgoing connections, but it will keep your protected sufficiently.

 

[L33]

Your router is a hardware firewall. Unless you have your PCs within the DMZ or have NAT'ed ports/IPs, you're protected from incoming connections being made directly to your PC.

At the end of the day even a dedicated firewall like a cisco PIX or sonicwall etc work in the same way in that they are a piece of hardware that runs some software. The 'software' is configured and then makes choices based on those rules and source & destination ip/mac, protocol, port etc etc.

 

[bigredshark]

I wouldn't use anything else myself, but I'm a special case in that...

a) I work for an ISP, am used to having a hardware firewall and I just borrowed a £500 one from work at no cost.

b) I address my LAN using a public /28 so I don't have the protection of NAT to hide behind.

 

[Phemo]

Yeah I've got a Netscreen at home which I quite like, I personally wouldn't want to go back to using a regular home router. I only have a /29 but I still like the flexibility that my NS gives me

 

[bigredshark]

Yeah I've got a Netscreen at home which I quite like, I personally wouldn't want to go back to using a regular home router. I only have a /29 but I still like the flexibility that my NS gives me

I have an SSG20, it's a great bit of kit but the old netscreen 5's were pretty good too...

 

[Sp00n]

SSG20 is a bit overkill for home use, SSG5 would still be overkill as well imo but not so much.

 

[bigredshark]

SSG20 is a bit overkill for home use, SSG5 would still be overkill as well imo but not so much.

Cheapest SSG to take an ADSL module, I'm not too bothered, isn't costing me anything...

 

[Phemo]

Yeah I only have a 5GT, can't get anything better unfortunately but it was free. I work for a Juniper distributor so I have access to a lot of kit but I can't really get away with pinching an SSG320 or something for home unfortunately

 

[Ice Rich]

Thanks for replies guys, I never knew that the WRT54GL (or any router?), could be used as a firewall also. I am running DDWRT firmware at the moment so i'll have to read up on this.

Am I right in saying even a 'hardware firewall' would not just be plug & play? As rules need to be created for the person who is using it?

Thanks