Router firewall or ZoneAlarm???

do a port scan test at dslreports
http://www.dslreports.com/scan

I have a Belkin router and Zone Alarm. Do that believe the myths that routers alone are sufficient. My software firewall, whether is is Zone Alarm now or McAfee before has caught many things that have slipped through the router. The router catches most things, but not everything and that is the reason I use both a hardware and a software router. I also use Ad-Adware SE and now Microsoft's AntiSpware Beta1.

Protection is like Money and Memory, no such thing as too much.

But on the software side, I must recommend PC-Cillin. It provides Anti-virus, Anti-Spy/Adware, and Firewall all in on simple package. Even better, it requires less memory and CPU cycles then Norton Anti-Virus alone.

Check out the online reviews. I have used Norton for over 20 years, Zone Labs for probably better than 5 years, and every other option out there at one time or another.

Now all of my systems are using PC-Cillin, I am happier, and have more money in my pocket.

Life is Good!

I just bought a D-link DI-624 router (love it!), but I still use my ZoneAlarm Pro. I disabled the Windows Firewall. I also use Norton AV, Microsoft Antispyware, Spybot Search & Destroy, Lavasoft AdAware, & Spyware Doctor. You can never be too safe.

Most routers don't have a real firewall
some people beleive that nat )network address translation) is a firewall its not

a real firewall should look al all packets in and out

nat only works on incoming packets

a software firewall will protect you from outgoing packets as well

I just wanted to share my experience. I installed a router to my existing system and then upgraded ZoneAlarm to version 5.5. DON'T DO THIS!

I have had nothing but problems since this new download and all ZoneAlarm has to say about it is they are working on it.

I am running XP Home Service Pack 1. I can no longer use my messengers (Yahoo/ICQ/MSN/Trillion). I am unable to connect to any https site. I get a page cannot be displayed.

If you try and uninstall or shut off ZoneAlarm you will not have access to ANY internet connection at all.

I now have ZoneAlarm 4.5 but that did not solve my problem and I still do not have access to the above mentioned sites.

Hi. I'm by no means an expert, nor am I in the novice category. My setup involves a wireless router (NetGear) connected to my cable modem. This enables me to share the internet connection with 3 other PC's in the house. I use the router's firewall functionality to make myself invisible on the net from a h/w perspective, and use Zone Alarm loaded on the PC's to take advantage of further s/w protection, email scanning, and the many other features of ZA too many to mention here. In today's world of cyber pests, certainly run AdAware & Spybot - use & update these regularly! I also run the latest AVG virus edition (free version). My motto: Use whatever tools are available for maximum protection, without going over the top and overloading the system.

Cheers!

I am no expert, but have used Zone Alarm since the first version came out a few years ago. The router (I have Linksys) as I understand it, has a basic firewall built in, but it can be circumvented as witnessed by a friend who got a virus that was searching the network for vulnerable computers. (He didn?t have to open any mail; it just came in uninvited.) The friend who helped him fix the machine (it was so busy looking for more victims he couldn?t get it to do anything else, including download the fix) told him a properly configured software firewall would have stopped it from trying to get out, and would likely have prevented him from receiving the virus in the first place. The main problem with firewalls like Zone Alarm is like someone else said, most people don?t understand how to use them, and end up allowing stuff that has no business accessing the net. The instructions (help files) don?t really explain how to determine what should and what should not have access. I have slowly learned for myself which programs need access, and watch what comes up when I start a new program. Maybe CNET should have a class on this. Actually, I think they do.

Anyway, bottom line: if you use hardware, software firewalls, virus protection, and scan frequently with scumware cleaners (SpyBot S&D) you should be able to keep your computer pretty clean. You also have to be smart enough to recognize for yourself when a unsolicited e-mail may contain virus; understand your firewall; never open strange attachments; stay away from sites (such as porno) known or expected to have scumware or viruses, etc. and be sure your virus program updates itself frequently and runs at least once a week. I have my virus program run update and scan in the middle of the night every night.

Hi!
Many of the above participents mention specific protection against two separate items: spyware and viruses, while router/firewall "only" secures you against hacking.
I would like to mention a third item: Trojans. Neither of the above measures offer specific protection against this (while some protection though). I would recommend either TrojanHunter, a combined scanner and protection, or a free once-and-for-all scan with the free edition of TrojanHunter and then a reliable on-line protection like e.g. BOClean. In this way, you should be optimally protected. Unfortunately this costs a moderate sum, while there (as far as I know) doesn't exist good freeware anti-Trojan programs.
Good luck
KAVN

Hardware "firewalls" vary greatly in their features and effectiveness, as do software firewalls. A basic NAT router is only a partial firewall solution and so easily circumvented that they really shouln't be called a firewall. Anything that leads one to a false sense of security is dangerous. Add SPI and it is much more effective and can be called a true firewall, but still is only a one way solution. Any firewall must be correctly configured or they could leave you wide open to a semi-skilled attack or robot worm. For instance, if a hardware firewall is set to accept remote administration with the default or weak password, it is pretty worthless. Or if someone added their computer to the DMZ zone, same result.

Note that a hardware firewall usually blindly accepts all outgoing traffic, be it your web surfing or a Trojan sending all your keystrokes and more to some creep. A decent software firewall also checks outbound traffic. If you want good protection, use both.

At least with a decent software firewall you have the benefit of a lot of skilled programmers doing their best to keep their customers out of trouble. I strongly recommend using both. If is down to one or the other, I'd pick a two-way software firewall like Zone Alarm. Definitely don't rely on a basic NAT router all by itself. And if you do use any hardware firewall, take the time to read the owners manual and set it up correctly.

I use both - the Hardware does not stop messages from going out whereas the software does....Safe on both ends.

Hi All;

The router is the first wall of defense. the software firewall is next and a lot smarter, as you can program it to pass or deny any limit of data that you wish.

I have found the perfect solution. Build and use a totally seperate computer for online foolin around, and keep your valuable and essential files on the "good" and unconnected machine. "Never the two to kiss or touch hands". Oh ya, n backup - backup!!!.
Daviepoo

It depends solely on how well you understand the principles involved. If you a have a reasonably advanced router (Netgear DG834V2 for example) and correctly set it up, no unwanted traffic will come near your computer unless your machine specifically requests it, therefore a software firewall is unnecessary.

However, it is absolutely imperative that you have up to date antivirus protection, and that it scans your machine regularly. If it turns up nothing, likelihood is very high that your machine is clean. If it remains clean and you router is correctly denying all port access from the internet from reaching your machine, then you will be happily safe on the internet.

With high speed connections, I wouldn't be without the hardware firewall, but it only guards against what was not requested by your computer. If you get spyware or trojans on your computer, it could be sending out requests without your knowledge. Definitely keep good, up-to-date antivirus & spyware protection along with the hardware firewall. As for a software firewall, as long as you have the antivirus and spyware protection and the router firewall, the software firewall is an unneccessary waste of resources. Go to the "shields up" website to test your set-up.

I hear this from my clients a lot. They are under the impression that a firewall prevents viruses from entering the network/computer. A firewall, by definition, does nothing of the sort. Here's what a firewall does do.

Computers communicate with each other over the internet most commonly using TCP/IP and UCP. If you plug your computer into the internet without a firewall, you get a public IP address that is reachable by any other computer on the internet. Without a firewall, you are plugged into a giant network of computers that is no different than plugging an untrusted stranger into a network switch at your house. Anyone on the internet can make requests to your computer to browse files, use printers, probe around for services with open security holes, etc.

A firewall stands between your computer and the public network (the internet). Any unsolicited incoming requests are dropped or returned depending upon how you have set up the firewall preferences. Virtuall any hardware firewall that you buy at Best Buy or Circuit City is set to allow any outgoing request by default. This is where a software firewall comes in handy.

What hardware firewalls don't do: hardware firewalls don't inspect the traffic to see if the file that is coming through contains a virus unless you have a very high-end, expensive piece of equipment. For the most part, that's the job of the anti-virus program running on your computer. Because of this, there still remains the possibility that you will download a specific type of virus called a worm. A worm will propigate by using the network to send a copy of itself to other computers. The mechanism it uses to transport varies, but one of the most common is to create a small mail server on the infected machine and start sending out emails. A software firewall will detect the unexpected outgoing traffic on port 25 (the SMTP mail port) and ask you if you'd like to allow it. This requires that you be aware of which applications should be sending network traffic, but if the program name is cryptic, or you don't recognize it, you should disallow the traffic until an application you recognize complains about it.

Given these factors, it is a good idea to run a hardware and software firewall. The hardware firewall will prevent unsolicited incoming requests, and the software firewall will help you identify unwanted outgoing traffic.

I have D-link router for 2 years now, I also blocked port 113 to be totaly stealth and I have ZA also because I like the icon on taskbar when shows the inbound outbound traffic. I also use Trend Micro Internet my favorite antivirus software and I have no penetration in the past 4 years.
You can always try your firewall here https://www.grc.com/x/ne.dll?bh0bkyd2 and see it for your self.

I have networked 3 home computers with a wireless setup, using software firewalls on the computers as well as virus scanners and Adaware & Spybot. I did not decrease the levels of anything considering the persons who will use the computers. My philosophy is "better safe than have to straighten out their problems". The persons trying to influence your computer needs all the hinderence you can give them.

I use a Belkin router on my home network. This is supported by McAfee AV and Firewall along with CounterSpy, MailWasher, and CyberScrub to clean up.
I recommend using all available defenders.
I wonder if those of you having problems with Zone Alarm have had a good read through the help files.
McAfee Firewall has a setting which must be enabled to allow the networked computers have access to one another perhaps Zone Alarm is similar.
Re those advising that you uninstall ZA a word of caution. You regularly come across this in the Pc support industry,if they don't understand the programme their attitude is uninstall it, sure it can't do any harm and gets them out of having to help you. Look at their tendancy to advise that you re-install your operatig system at the slightest sign of a problem. They don't give a damn that you are faced with the prospect of re-installing all your software downloads etc. They just want the easy fix for themselves.
I would suggest that you ask them for exact details regarding their poor opinion of ZA and raise the issue with Zone Alarm who may have a simple fix for the problem, if there is a problem.

hitbit