Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SIMPLe firewall question

Status
Not open for further replies.
drluggo

drluggo

Programmer
Jan 14, 2003
39
US
I purchased a D-Link router for my home network. The default firewall rules are as follows:

Deny Source=*,* Dest=LAN,* Protocol/Port= IP(0),*
Allow Source = LAN,* Dest=*,* Protocol/Port= IP(0),*

Their documentation does not explain this well but I think this is the maximum security:

Deny all access to all ports on my LAN from everywhere on the internet, but allow the LAN to access the entire internet.

My question lies with the word access. If all access is denied from the internet, how does a web page display on a computer in my LAN when I request it? If the answer to this is the Protocol/Port configuration, and HTTP is allowed, what types of communication does IP(0) actually cover?

Any help in explaining would be appreciated.
 
Sort by date Sort by votes
All having a hardware firewall means is that you have reduced your chances of being hacked. No firewall will protect you 100%, but having one helps a great deal. IMHO having a Software firewall will not hurt and provides a backup line of defense. This will reduce your chances of being hacked even more. There are quite a few quality Free software firewalls that are easily obtainable (I use Kerio Personal
 
Upvote 0 Downvote
Thanks for the input.

My genral question is (regardless of software/hardware firewall or both), if all I am doing from my LAN is accesing the internet for web browsing and e-mail (no peer-to-peer or IM stuff), am I the most protected with the firewall settings that I have, or do I have to figure out other settings.

I want to just be able to install and leave the firewall settings as is and know that I am well-protected.
 
Upvote 0 Downvote
I want to just be able to install and leave the firewall settings as is and know that I am well-protected.

For the most part the settings you have are very secure and you are probably well-protected. However every day exploits and other cracks are found for both software and hardware firewalls. There are no guarantees that you will stay well-protected. The dream of having something that you can set and forget will not exist in the near future.
Take the extra step and get a software firewall to work with the Hardware firewall. Then get into the habit of checking for patches and firmware on a regular basis. Doing those two things combined with current Anti Virus are your best bet to get and Stay well-protected.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
296
intel233
intel233
TheFireman2
  • Locked
  • Question
Help with Watchguard Firebox M200 setup as a TMG 2010 replacement with ASA 5515 as main firewall
Replies
1
Views
113
hairlessupportmonkey
hairlessupportmonkey
hall5942
  • Locked
  • Question
open firewall port on 881
Replies
0
Views
80
hall5942
hall5942
hall5942
  • Locked
  • Question
open firewall port on 881
Replies
0
Views
75
hall5942
hall5942
NoCoolHandle
  • Locked
  • Question
TLS 1.0 vrs TLS 1.1 vrs 1.2 connection strategy question
Replies
1
Views
77
ChrisHirst
ChrisHirst

Part and Inventory Search

Sponsor

Back
Top