| Pages: [1] :: one page |
|
|
| Author |
Thread Statistics | Show CCP posts - 0 post(s) |
Scooby
   |
Posted - 2003.12.31 11:22:00 -
[1]
My PC connects to the net through a broadband router box. I have a firewall running (Zonealarm) but have been told there's no need to run a firewall if using a router as that acts as a firewall too.
So, is there any point in me running Zonealarm whilst playing EVE. The reason I ask is because it sometimes degrades the performance of the game. Will my router box be enough protection against hackers/virus' etc?
Thanks.
|
IZON
|
Posted - 2003.12.31 11:26:00 -
[2]
Correct, if the router is set up as a firewall that should be all you need. The hardware router wont use/take any processing time either and probably do a better job than the software firewall.
"...master! there's a guy in the south village called IZON, he is a Ninja!" |
Gun Kata
|
Posted - 2003.12.31 12:10:00 -
[3]
Edited by: Gun Kata on 31/12/2003 12:11:02
Scooby, I find to hard to believe that Zonealarm is slowing down your game. I am running a router and Zonealarm (router not as firewall) and do not get any performance issues. Zonealarm was designed to be a transparant program as far as I know.
The downside to having a firewall in your router is you have to have the knowledge to set up and monitor this type of firewall! (Unless it has a web based front end, but you will still have to manually check logs and it may not be able to alert you of a 'problem').
"I have seen everything now."
"Yeah? Have you seen a man eat his own head?" |
Naal Morno
|
Posted - 2003.12.31 18:53:00 -
[4]
IMHO whole point of software firewall IN ADDITION to hardware one on your router is to have apllication access control.
I had numerous accidents where even legitimate programs were trying to 'call home' which I would not know about if not my Kerio Firewall... Call me paranoid but you never know what kind of data might be send out.
Keep it on.
Your Heavy Neutron Blaster II perfectly strikes Serpentis Chief Sentinel, wrecking for 660.4 damage.
|
Tangentoar
|
Posted - 2004.01.01 02:46:00 -
[5]
Edited by: Tangentoar on 01/01/2004 02:47:12
Most Hardware routers use NAT, assuming you dont have numerous public IP addresses in you network.
Basically the router does not let any ip packets enter it unless they are from an address you have already contacted.
Also becuase most likey you have a private ip adress in one of the reserved ranges, it is very hard for anyone to adress your pc in TCP/IP anyway as the private ranges are non-routable. This type of firewall is totally sufficient in my opinion.
If you are working for the government or somethign top secret, then hey, disconnect your pc from the net anyway!
|
Athan
|
Posted - 2004.01.01 09:56:00 -
[6]
Be careful, some DSL routers that DO do NAT still 'cheat' and will pass through any connection to the public IP to the private one behind them. Especially if you have only one machine behind the router. If you have more than one then you'd have to set it specifically to do so (after all, how's the router to know which private IP to send the connection to ?).
In short, don't assume that NAT automatically 100% means no inbound connections will work. Check your manual and settings!
-Ath
--
http://big.wayland.dk/Lottery.asp - The BIG Lottery |
Tangentoar
|
Posted - 2004.01.01 18:35:00 -
[7]
Edited by: Tangentoar on 01/01/2004 18:40:21
Edited by: Tangentoar on 01/01/2004 18:37:28
How does the router know which private IP adress to send the packets to, even if you only have one machine behind the router. If someone is hacking in from scratch, they will not ahve any of the private IP addresses listed methinks, unless they are REALLY good. If this is the case, and they want to hack you, be afraid, very afraid.
But yes, if you have virtual servers or anything else set up this could happen in theory. I agree, always check the settings.
|
Jara
|
Posted - 2004.01.06 05:09:00 -
[8]
Zonealarm most definitely is causing you performance problems. Think about it this way, the entire purpose of Zonealarm is to inspect every incoming and outgoing IP packet to your machine, when previously this wasn't being done. We did some testing at work with Zonealarm in a high packet-per-second envinronment, and Zonealarm actually caused a BSOD on the test machines as soon as any significant load was introduced.
If you're that concerened about performance, and your router is truely acting as a NAT/firewall device I'd say get rid of Zonealarm.
|
Athan
|
Posted - 2004.01.06 15:38:00 -
[9]
 Quote:
Edited by: Tangentoar on 01/01/2004 18:40:21
Edited by: Tangentoar on 01/01/2004 18:37:28
How does the router know which private IP adress to send the packets to, even if you only have one machine behind the router. If someone is hacking in from scratch, they will not ahve any of the private IP addresses listed methinks, unless they are REALLY good. If this is the case, and they want to hack you, be afraid, very afraid.
As I said, only applicable if there's only *ONE* private IP, and almost certainly only if you let the router 'set' the machine's IP using DHCP, as it definitely then knows the IP.
There's also a specific option to do this in some routers, and some people might enable to in ignorance "just to get file sending working in this chat client" or something.
-Ath
--
http://big.wayland.dk/Lottery.asp - The BIG Lottery |
|
|
| |
|
| Pages: [1] :: one page |
| First page | Previous page | Next page | Last page |