Announcement

Collapse
No announcement yet.

firewall

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • firewall

    i have already installed kerio winroute fireall that acts as my proxy to make users connect to the internet.

    do i still need to install persona firewalls on my clients? i'm using win2k server and win2k pro clients

  • #2
    If you have a good wall in the proxy computer then i think you do not need to install a firewall on all the clients.
    MCSE w2k
    MCSA w2k - MCSA w2k MESSAGING
    MCDBA SQL2k

    Comment


    • #3
      well it isn't a bad thing to do. Think about laptop users. Also it helps agains viruses... Blocking non using ports, will prevent deploying viruses on you're network.
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment


      • #4
        Originally posted by Dumber
        well it isn't a bad thing to do. Think about laptop users. Also it helps agains viruses... Blocking non using ports, will prevent deploying viruses on you're network.
        You're right Dumber
        MCSE w2k
        MCSA w2k - MCSA w2k MESSAGING
        MCDBA SQL2k

        Comment


        • #5
          Why not?

          Why not?

          Comment


          • #6
            as for laptop computers in the domain, if you want the computers to have windows xp firewall turned on while they are out of the office and turned off while they are in the office you can edit the domain group policy to Prohibit use of Internet Connection Firewall on your DNS domain network.

            this is useful when you have a good firewall in the entrance and you want to disable the firewall in you organization, but still you want laptop users to have the firewall turned on when they are out of the office.
            Good Luck

            Shai

            MCSE 2003+Security;MCSE 2003+Messaging
            HP ASE;HP AIS;HP APS

            So, from me to all of you out there, wherever you are, remember:
            the light at the end of the tunnel may be you. Good Day!

            Comment


            • #7
              well also in you're lan, enabling firewalls almost a must do.. This because IDS and distributing virusses on you're LAN.

              Worms mostly uses random port numbers for deploying themselfs on the network. IF you're anti-virus isn't up-to-date yet (for some reason) or you're anti-virus vendor didn't bring out a new update, you're network will be protected because of the personal firewalls.


              for example can do: http://nl.trendmicro-europe.com/ente...p;rightnav=0,0

              or http://www.mcafeesecurity.com/us/pro...p_firewall.htm

              but those example's only shows that even anti-virus vendors almost (of course there own product) starting recommending to use Desktop firewalling.
              Marcel
              Technical Consultant
              Netherlands
              http://www.phetios.com
              http://blog.nessus.nl

              MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
              "No matter how secure, there is always the human factor."

              "Enjoy life today, tomorrow may never come."
              "If you're going through hell, keep going. ~Winston Churchill"

              Comment

              Working...
              X