Which firewalls are actually worth using?

I realize that - by placing this thread on a Comodo forum - I’m sure to get inundated with the innumerable replies that the Comodo firewall walks on water, talks with the angels, sits at the right hand of God, etc. etc. etc.

However (“On the other hand…” Tevye, Fiddler On The Roof ) My experience here has been that most everyone here is the “straight-shootin’ kind of hombre” that I like to associate with, and I believe that I can get a reasonably straight answer from.

Question:

What firewalls are actually worth the effort required to press the “enter” key to install them?

AFAIK, firewalls fall into two very broad (and overlapping) categories:

First: Those that are about as useful as [censored!] on a boar-hog. (i.e. Windows Firewall and others like it.)

Second: Those that are a total pain to use and configure. These may actually do a decent job, but you get innundated with alerts every time you break wind, to the point that you develop a bad case of the “Alright already!” syndrome, and may actually allow things you don’t want to.

It has also been my experience (at least with the freeware offerings by others), that after about a month or so of use, the system slowly becomes un-usable - as if the firewall is secretly blocking access to things to make the system crappy, so they can “fix” your problem with their payware version. Uninstalling the firewall usually solves the problem.

What I want:

1. A firewall that actually works.

2. A firewall that doesn’t interrupt me every 17 seconds because svchost is trying to do something… (and how am I supposed to know what svchost is proxying for THIS time? Is it legit? Is it something skanky?)

Ideally, especially in the case of things like svchost where the actual calling routine may be totally legit (doing a ping back to my domain controller), or something vile (ugly_skankware.exe phoning home, etc.) - a reference to WHAT is calling svchost would be useful.

3. Some kind of MD5 hash for those apps that are allowed, so that app-spoofing can’t occur. (leak test anyone?)

4. One that won’t go into the toilet after a month or so of use.

And so on.

In a nutshell, something that I can install on my wife’s computer, or (gasp!) even my mom’s computer, without worrying that they’re going to get innundated with alerts, but still know they’re being effectively protected.

An important “BTW”: I always advocate, at the very least, a decent hardware firewall between you and them - with NOTHING turned on. (except the DMZ for my VoIP adapter!)

You know… yadda… yadda… yadda…

I’d really like to see some (hopefully) unbiased comment on the various firewalls out there - how they compare to each other and the Comodo offerings, etc. etc. etc.

What say ye?

Jim

There will always be a trade-off between security and usability.

Try all the firewalls and use the one that suites you best.

In my experience,

from free products, Kerio is usable and stable enough, eventhough Matousec does not evaluate it too high. Comodo could become the best solution, if the expected v3 removes the current pending problems (especially in user’s control area).

From paid fws, I aboslutely prefer Outpost, in spite what Matousec says.

Sorry, Jim. I know you love your new cozy General Security Questions and Comments (not product related) board :D, but to this thread title just fits perfectly in this Computer Firewalls board where there will be actual names referenced. So I had to move it here.

Hey everybody

When I found COMODO CPF I was very impressed with its layout and advanced Features. Its very configurable Network Monitor(NM) and seemingly almost equally configurable Application Monitor(AM). I have not played with Component monitor yet. I will probably just watch it and let it auto Configure

What I´m realy looking for is Opinions O f people who are experianced with several differnt Firewalls possiblly but not nessecarily even at the enterprise level.

You could also post what you would like to see in COMODO to help make it a World class Firewall You may also post these coments Here
[/quote]

Look’in forward to hearin’ ya’lls comments :Beer
Thanks Opus Dei

PS I would like to say I think Comodo is the best consumer firewall I have seen and have great hopes for V3 (:WIN)

Jim

Ive tried Norton, Zone Alarm Pro, Had some faily large clients using Checkpoint 4-5 Years ago and had clients with others I cant remember which one exactlyI prefer CFP over them all. but I agree with JanPoko. Especially In AM filters

What I want:

1. A firewall that actually works.

2. A firewall that doesn’t interrupt me every 17 seconds because svchost is trying to do something… (and how am I supposed to know what svchost is proxying for THIS time? Is it legit? Is it something skanky?) Well, depending on your settings CPF Might Hit you with many prompts for this, however this can be changed

Ideally, especially in the case of things like svchost where the actual calling routine may be totally legit (doing a ping back to my domain controller), or something vile (ugly_skankware.exe phoning home, etc.) - a reference to WHAT is calling svchost would be useful. CPF will tell what the parent app is

3. Some kind of MD5 hash for those apps that are allowed, so that app-spoofing can’t occur. (leak test anyone?)CPF does this

4. One that won’t go into the toilet after a month or so of use.I don´t know about this yet

I think it’s a little harsh to compare something like CFP with Checkpoint. Whilst it’s certainly possible that your average Internet user might go out and buy Checkpoint, it’s pretty unlikely. Might just as well go an buy a PIX 500.

I’ve been through a lot of different firewalls, both software and hardware, in terms of ease of use, CFP wins hands down. For most people, it’s simply a matter of installing it, job done. For others, there is the ability to ‘play’ to take the configuration to the next level.

On the commercial side, how much ya wanna spend? I worked for a company where money was tight. so I set up several Linux boxes, no GUI, running IPChains, total cost, almost NIL, they were old 286 boxes, worked like a charm.

I worked for another company where only the best was good enough, CISCO PIX all over. I’ve also had the (mis)fortune to spend time with MS ISA server, nuf said.

For most home users CFP is great, it does what it says on the tin. Sure, there are things I’d like to see changed, but that’s what the wish list is for…

I seriously believe, that for most people, most of the time, CFP is perfect. You can more or less, set it and forget it. I’m not saying you’ll never receive a pop-up, of course you will, but if your not into hacking away at rule creation, CFP works just fine.

I guess I need to go back and rephrase my question I’m not so much wanting a comparison as opinions of network Profesionals
Maybe I will retitle it also

Opus, do you not think this is pretty much the same question being asked here Which firewalls are actually worth using? ?

Yea more Or less If you would like deleate this thread I thought that when I was replying to you post last night TRied to deleat the thread my self but I dont have the rights.

but where’s the fun in that (:NRD)

How about CF ver 3?

I’ve used most PC based firewalls out there but my preferred firewall is CFP.

Of the others Jetico BETA2 is nice, very tight, very secure but aimed at the more experienced user.

I also liked the now defunct firewall from Wyvernworks.com, Firewall 2004 V5.2. Excellent user interface, easy to create rules manually with comprehensive protocol and logging support. Unfortunately it hasn’t been updated since mid 2005. Real pity.

Cheers,
Ewen

I can also merge this thread with that other one, or if you think that’s too confusing and just want to remove this thread, you can click the Remove Topic button

at the bottom.

Ok, for what it is worth.
I am not an expert, I would refer to myself as a LOOOOOONG time, above average user.
I also spent 15 good years in the industry working for such companies as iNTEL and Tektronics.

Ok enuf of that.
I have used a few firewalls and here is how it lays out for me:

ZoneAlarm by CheckPoint.
This use to be my old standard. When I first started using ZA, it was a simple bur effective program, nothing hidden, and it was not a system pig. The lates version of this once great product is completely foul in my humble opinion. It has become a huge system pig, the setup file that is downloaded includes items not offered in the free edition, but these items set themselves up anyway. Also, there are options that have been locked out involving some of the chat programs that are NOT accessible unless you decide to turn on the 15 day “full” version. Of course, once you do ZA will completely take over your system, finishing the installations on its VIRUS and Spyware scanners. The file of course fails to mention that it is going to do this…sigh.
Ok, the short of it is ZA has been ruined. It is no longer a decent firewall as much as it is a system pig. I no longer recommend it.

Jetico Personal firewall
At the other end you have this little ditty. A suprisingly small download, (2.7 Mb latest version),
it would seem that this firewall is not a system pig. However, even tho it is small, lite, and strong, it is NOT beginner friendly. You need to know what you are doing in order to correctly set up this one. You will have to create your own rules from scratch, and the interface is very simplified so it tends to lack information. It is a good firewall, but really more for the very experienced.

Comodo
Well, this is the one I use. Need I say more? The download went fine. The setup was user friendly.
The learning mode is great. The information given is easy to understand. The creation of rules should you have a need is very well explained. It is NOT a system pig. It is a very clean, strong software firewall.

Well that was my two-cents. Hope that helps ;D

(:AGY) (fume… fume…)

JUST KIDDING!!! ;D

Hey, we all see things differently… That’s why Norton still makes a zillion bux on a software “product” that I wouldn’t trust any further than I could throw it - under water - against a raging current!

Honestly now - I’ve tried a few too - with indifferent success, to the point where (though firewalls are a Good Thing), I had enjoyed as much as I could stand…

The one and only redeeming factor that would entice me to look at the Comodo firewall is right here in front of you - these groups and the help they provide. More than that, the knowlege that people at the highest levels of management (do you recognise yourself Meliah? ;D ) lurk these groups, and good things happen…

I’m reminded of a song - popular in the late 60’s, early 70’s: Up With People…
“If more people were for people, all people everywhere, we’d have a lot less people to worry about, and a lot more people who care!”

I was thinking of paraphrasing it to talk about “if more software companies were this interactive with their user-base, software would advance by leaps and bounds!”

Jim

p.s. Now that tax season is over, I’m looking forward to loading some of this stuff up and beating the living [censored!] out of it.

Wow, I feel dumb. Sorry guys, there seems to be a thread with much the same things that I said here.
Apologies for repeating. Maybe merge the two threads?

Done. It looks confusing (as always).

Hear! hear! Jim I could not agre with you more

I thik the support and user base in the forums is impresive. And I have been impressed at getting replies from Melih also even if it is not aways Melih himself perhaps it is I don’t know but at least it makes you feel you have his Ear. Same with seeing Egemen post in the forums I make s the corperate structure seem less aloof

You kno wat els id lik to see is a spell Checker in the forums because my spelling sux immlost withot Word spell checker
LOL
Opus (B)

PS Even if it is confusing its beter to merge the topics than have 2 along the same lines