hardware vs software firewalls

hardware vs software firewalls
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
hardware vs software firewalls Mike Hansford 01-28-2005
Posted by Mike Hansford on January 28, 2005, 4:41 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
OK, this question is only really valid if we're comparing a hardware
firewall with a software firewall based on a separate PC - something like a
Smoothwall setup with red and green adapters.

I'm led to believe that if the software within a hardware firewall crashes
the whole connection is lost so I'm not left with an unprotected
connection. However, what happens to a software based firewall if the
firewall software crashes? Am I then left with an unprotected connection,
or will the connection be broken as well? It's clearly not desirable for
this to happen...

Mike


Posted by Mike on January 28, 2005, 8:08 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Mike Hansford wrote:
> OK, this question is only really valid if we're comparing a hardware
> firewall with a software firewall based on a separate PC - something like a
> Smoothwall setup with red and green adapters.

Whats the difference? A hardware firewall is just some PC like hardware
running a hardend OS. A Linux firewall like Smoothwall is just a PC
running a hardend OS.

--

------------------------------------

Real email to mike. The header email is a spam trap and you will be
blacklisted,
submitted to anti-spam sites and proably burn in hell.


Posted by Jason Edwards on January 28, 2005, 10:38 am
If you were  Registered and logged in, you could reply and use other advanced thread options
> OK, this question is only really valid if we're comparing a hardware
> firewall with a software firewall based on a separate PC - something like
a
> Smoothwall setup with red and green adapters.
>
> I'm led to believe that if the software within a hardware firewall crashes
> the whole connection is lost so I'm not left with an unprotected
> connection.

If the CPU in a hardware firewall stops executing code then no traffic is
possible.
A firewall appliance is likely to have a separate piece of hardware which
will detect this and reset the CPU. The firewall may then start working
properly again. If the CPU cannot run because of a hardware fault then there
will be no traffic and you need a new firewall.

However, what happens to a software based firewall if the
> firewall software crashes?

In this case it is possible that you are left with no protection.
There are plenty of viruses/trojans out there which attempt to shut down
software firewalls.
If your firewall and your virus/trojan are both running with the same
privileges then the software firewall is completely useless.
There is plenty of code out there which demonstrates how to bypass software
firewalls.
I have come across users who hadn't noticed that a software firewall had
been shut down by a virus.

Jason

> Am I then left with an unprotected connection,
> or will the connection be broken as well? It's clearly not desirable for
> this to happen...
>
> Mike




Posted by Leythos on January 28, 2005, 12:10 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
hanmjau@yahoo.com.au says...
> OK, this question is only really valid if we're comparing a hardware
> firewall with a software firewall based on a separate PC - something like a
> Smoothwall setup with red and green adapters.
>
> I'm led to believe that if the software within a hardware firewall crashes
> the whole connection is lost so I'm not left with an unprotected
> connection. However, what happens to a software based firewall if the
> firewall software crashes? Am I then left with an unprotected connection,
> or will the connection be broken as well? It's clearly not desirable for
> this to happen...

You've got to different things here:

1) Firewall Appliance, running micro code and firmware in a stand alone
device - not a PC exactly

2) A PC running an application acting as a firewall with two NICs - a
PC.

In the first instance, since the small OS and firmware are all that's
running, and since it's been tested and certified for this purpose, it's
going to block all access not let everything through.

In the second instance you have a full OS running with a application.
The combination has not been certified. You should expect that the
failure of either would block access, but without testing you never
know.

--
--
spamfree999@rrohio.com
(Remove 999 to reply to me)


Similar ThreadsPosted
Hardware vs software firewall December 22, 2004, 6:10 pm
Software/ Hardware firewall question January 28, 2005, 2:45 am
Re: Software/Hardware firewall interaction? March 7, 2006, 8:36 pm
software/hardware Firewall tradeoff August 16, 2006, 12:00 pm
A Hardware and Software Firewall Combination (I got Hacked!) October 24, 2006, 10:11 am
Strange problem with software or hardware router.. February 16, 2007, 8:08 pm
Hardware-Software Firewall Combo Part Deux October 24, 2006, 2:08 pm
Why you have hardware firewalls April 5, 2005, 5:41 pm
Re: Most Popular Hardware Firewalls? April 14, 2006, 11:43 pm
Changed from a software to a hardware firewall...now NETWORK PLACES won't display computer names January 5, 2006, 1:42 pm

The site map in XML format XML site map

Contact Us | Privacy Policy