[Newbie alert!] Is the Linksys BEFSX41 hardware Firewall/router a

[Newbie alert!] Is the Linksys BEFSX41 hardware Firewall/router a "real" firewall?
Secure Home | Search | About
Login Password
Register Now! Lost Password?

Networking Firewalls - Software and hardware firewalls discussions 

Bookmark this page:  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
[Newbie alert!] Is the Linksys BEFSX41 hardware Firewall/router a "real" firewall? Melissa 03-25-2005
Posted by Melissa on March 25, 2005, 11:12 am
If you were  Registered and logged in, you could reply and use other advanced thread options
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Hi,

Though I've been using a software firewall for several years now, I've
recently been inspired to implement a hardware solution in addition
to it. I've never experienced any obvious problems with my current
software firewall (Sygate Personal) in terms of instability or
apparent functionality issues, but just in case, I thought I'd like a
bit of extra security; especially if anything were to go wrong with
the software firewall for any reason.

And so, after reading some recommendations in other forums, and since
I don't have an extra PC available to be set up as a "hardware
firewall" (some have mentioned something about this as an easy
solution), I went ahead and purchased/installed a "router" that also
claims to be a "firewall", the Linksys BEFSX41 v2 (the picture here
looks slightly different than the actual unit in terms of its
"face"):

http://www.linksys.com/products/product.asp?grid=34&scid=29&prid=433

The basic setup was very easy, and without any further tweaking on my
part (yet, until I learn more about this unit), it seems to be
functioning "as advertised" (I've also "flashed" the firmware to an
updated version considered to be more stable than the firmware
version shipped with the unit). However, when I mentioned this new
unit in another news group (security related, but not specifically
firewall oriented), someone told me that what I have is not a
"proper" firewall at all; not in the least little bit according to
this person. As I warned in my subject line, I'm a newbie when it
comes to hardware "firewalls", so I'm not entirely sure just what to
make of that person's comments.

And so, since this newsgroup claims to be specifically firewall
oriented, I thought I'd ask here...

Is the Linksys BEFSX41 v2 considered to be a real "hardware
firewall"? Or is it not? Further, regardless of formal definitions
one way or the other, is it a reasonable thing in terms of working
with and/or backing up my current software firewall in case of a
potential software firewall problem? And also as a "first line of
defense" before anything even reaches the software firewall?

I would appreciate any and all comments that might help me understand
these issues further! :-)

Thanks!

- --
Melissa

PGP Public Keys: http://www.willkayakforfood.tk

-----BEGIN PGP SIGNATURE-----

iQCVAwUBQkRicjEYqNTZBqoEAQMn5AP+JC0xNiDXnWMwpMQg/JJPeXLJRBMDUEY1
axrJ6+wIKOMuwXXs7M82MmpMAW3/QcahthxPXbg1tKjRkN9DKIrvyJBWjNKVDpwH
/1tSS0xlS7aoicQku1UxWvTHnenUdvKK9lHyx7CfnEnSooHWHExUO05dCWviWNtc
eIyJwe0/eTY=
=ohpW
-----END PGP SIGNATURE-----


Posted by Leythos on March 25, 2005, 8:50 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
On Fri, 25 Mar 2005 11:12:06 -0800, Melissa wrote:
>
> Is the Linksys BEFSX41 v2 considered to be a real "hardware
> firewall"? Or is it not? Further, regardless of formal definitions
> one way or the other, is it a reasonable thing in terms of working
> with and/or backing up my current software firewall in case of a
> potential software firewall problem? And also as a "first line of
> defense" before anything even reaches the software firewall?

All of the linksys devices are just NAT Routers, some with different
features, but they are all just simple NAT Routers. They are not firewalls
in the traditional sense or in means of what a firewall really does for
protection.

They block unsolicited in-bound traffic unless you implement
port-forwarding or some other means to direct traffic in-bound.

Will the secure your home: You can do many things with the different
routers, like blocking outbound to destination ports (I always block
outbound to destination ports 135~139, 445, 1433~1434, and 1025~1027 as a
means to hinder the spread of a virus that compromises the internal
network). Many of these devices (NAT Routers) work just fine for inbound
protection and coupled with smart users, quality AV software, and not
using Internet Explorer (Use FireFox instead), and not running ANY P2P
programs, you can stay very secure.

The BEFSX allows for IP to IP VPN Tunnels in a very easy to setup mode.

Just make sure that you've changed the default network address from
192.168.0.x or 192.168.1.x to something like 192.168.10.x and that you use
a very long/strong password.


--
spam999free@rrohio.com
remove 999 in order to email me



Posted by Darko Gavrilovic on March 26, 2005, 5:52 am
If you were  Registered and logged in, you could reply and use other advanced thread options
111


> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: RIPEMD160
>
> Hi,
>
> Though I've been using a software firewall for several years now, I've
> recently been inspired to implement a hardware solution in addition
> to it. I've never experienced any obvious problems with my current
> software firewall (Sygate Personal) in terms of instability or
> apparent functionality issues, but just in case, I thought I'd like a
> bit of extra security; especially if anything were to go wrong with
> the software firewall for any reason.
>
> And so, after reading some recommendations in other forums, and since
> I don't have an extra PC available to be set up as a "hardware
> firewall" (some have mentioned something about this as an easy
> solution), I went ahead and purchased/installed a "router" that also
> claims to be a "firewall", the Linksys BEFSX41 v2 (the picture here
> looks slightly different than the actual unit in terms of its
> "face"):
>
> http://www.linksys.com/products/product.asp?grid=34&scid=29&prid=433
>
> The basic setup was very easy, and without any further tweaking on my
> part (yet, until I learn more about this unit), it seems to be
> functioning "as advertised" (I've also "flashed" the firmware to an
> updated version considered to be more stable than the firmware
> version shipped with the unit). However, when I mentioned this new
> unit in another news group (security related, but not specifically
> firewall oriented), someone told me that what I have is not a
> "proper" firewall at all; not in the least little bit according to
> this person. As I warned in my subject line, I'm a newbie when it
> comes to hardware "firewalls", so I'm not entirely sure just what to
> make of that person's comments.
>
> And so, since this newsgroup claims to be specifically firewall
> oriented, I thought I'd ask here...
>
> Is the Linksys BEFSX41 v2 considered to be a real "hardware
> firewall"? Or is it not? Further, regardless of formal definitions
> one way or the other, is it a reasonable thing in terms of working
> with and/or backing up my current software firewall in case of a
> potential software firewall problem? And also as a "first line of
> defense" before anything even reaches the software firewall?
>
> I would appreciate any and all comments that might help me understand
> these issues further! :-)
>
> Thanks!
>
> - --
> Melissa
>
> PGP Public Keys: http://www.willkayakforfood.tk
>
> -----BEGIN PGP SIGNATURE-----
>
> iQCVAwUBQkRicjEYqNTZBqoEAQMn5AP+JC0xNiDXnWMwpMQg/JJPeXLJRBMDUEY1
> axrJ6+wIKOMuwXXs7M82MmpMAW3/QcahthxPXbg1tKjRkN9DKIrvyJBWjNKVDpwH
> /1tSS0xlS7aoicQku1UxWvTHnenUdvKK9lHyx7CfnEnSooHWHExUO05dCWviWNtc
> eIyJwe0/eTY=
> =ohpW
> -----END PGP SIGNATURE-----

101

Howdy. IMO, the other respondents in the other group/forum are being a
little snobby. But yes, it does just drop packets and thats about it. I am
quite impressed by LinkSys/Cisco product line. You should be fine. I like
that they have GPL. http://www.linksys.com/support/gpl.asp

You would get more of a firewall by implementing a dedicated PC w/Linux.
There are quite a few "install and away you go" distro's for that, but I
won't plug them here because you may not be interested.

But, if you are concerned, what you can do is go the next step. Here are a
few.
http://www.sonicwall.com/products/tz150.html
http://www.watchguard.com/products/fireboxsoho6.asp

You get what you pay for, and the above should cost more than LinkSys NAT.

Another thing what "geeks" do to save some $$$, is pickup an old webramp
and load new sonicwall firmware on it. Apparently works quite well and very
cost effective.

webramp: http://tinyurl.com/6n4ac
the hack/mod: http://www.i-hacked.com/content/view/41/42/


cheers,
:-)

--
"Why do they call it rush hour when nothing moves?", Robin Williams


Posted by Steve on March 26, 2005, 10:48 am
If you were  Registered and logged in, you could reply and use other advanced thread options
This is what I ordered yesterday after reading Leythos' responce to my
posting.

http://www.guardsite.com/X15.asp




"Darko Gavrilovic" <dgavrilovicAThushmailDOTcom> wrote in message
> 111
>
>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: RIPEMD160
>>
>> Hi,
>>
>> Though I've been using a software firewall for several years now, I've
>> recently been inspired to implement a hardware solution in addition
>> to it. I've never experienced any obvious problems with my current
>> software firewall (Sygate Personal) in terms of instability or
>> apparent functionality issues, but just in case, I thought I'd like a
>> bit of extra security; especially if anything were to go wrong with
>> the software firewall for any reason.
>>
>> And so, after reading some recommendations in other forums, and since
>> I don't have an extra PC available to be set up as a "hardware
>> firewall" (some have mentioned something about this as an easy
>> solution), I went ahead and purchased/installed a "router" that also
>> claims to be a "firewall", the Linksys BEFSX41 v2 (the picture here
>> looks slightly different than the actual unit in terms of its
>> "face"):
>>
>> http://www.linksys.com/products/product.asp?grid=34&scid=29&prid=433
>>
>> The basic setup was very easy, and without any further tweaking on my
>> part (yet, until I learn more about this unit), it seems to be
>> functioning "as advertised" (I've also "flashed" the firmware to an
>> updated version considered to be more stable than the firmware
>> version shipped with the unit). However, when I mentioned this new
>> unit in another news group (security related, but not specifically
>> firewall oriented), someone told me that what I have is not a
>> "proper" firewall at all; not in the least little bit according to
>> this person. As I warned in my subject line, I'm a newbie when it
>> comes to hardware "firewalls", so I'm not entirely sure just what to
>> make of that person's comments.
>>
>> And so, since this newsgroup claims to be specifically firewall
>> oriented, I thought I'd ask here...
>>
>> Is the Linksys BEFSX41 v2 considered to be a real "hardware
>> firewall"? Or is it not? Further, regardless of formal definitions
>> one way or the other, is it a reasonable thing in terms of working
>> with and/or backing up my current software firewall in case of a
>> potential software firewall problem? And also as a "first line of
>> defense" before anything even reaches the software firewall?
>>
>> I would appreciate any and all comments that might help me understand
>> these issues further! :-)
>>
>> Thanks!
>>
>> - --
>> Melissa
>>
>> PGP Public Keys: http://www.willkayakforfood.tk
>>
>> -----BEGIN PGP SIGNATURE-----
>>
>> iQCVAwUBQkRicjEYqNTZBqoEAQMn5AP+JC0xNiDXnWMwpMQg/JJPeXLJRBMDUEY1
>> axrJ6+wIKOMuwXXs7M82MmpMAW3/QcahthxPXbg1tKjRkN9DKIrvyJBWjNKVDpwH
>> /1tSS0xlS7aoicQku1UxWvTHnenUdvKK9lHyx7CfnEnSooHWHExUO05dCWviWNtc
>> eIyJwe0/eTY=
>> =ohpW
>> -----END PGP SIGNATURE-----
>
> 101
>
> Howdy. IMO, the other respondents in the other group/forum are being a
> little snobby. But yes, it does just drop packets and thats about it. I
> am
> quite impressed by LinkSys/Cisco product line. You should be fine. I like
> that they have GPL. http://www.linksys.com/support/gpl.asp
>
> You would get more of a firewall by implementing a dedicated PC w/Linux.
> There are quite a few "install and away you go" distro's for that, but I
> won't plug them here because you may not be interested.
>
> But, if you are concerned, what you can do is go the next step. Here are a
> few.
> http://www.sonicwall.com/products/tz150.html
> http://www.watchguard.com/products/fireboxsoho6.asp
>
> You get what you pay for, and the above should cost more than LinkSys NAT.
>
> Another thing what "geeks" do to save some $$$, is pickup an old webramp
> and load new sonicwall firmware on it. Apparently works quite well and
> very
> cost effective.
>
> webramp: http://tinyurl.com/6n4ac
> the hack/mod: http://www.i-hacked.com/content/view/41/42/
>
>
> cheers,
> :-)
>
> --
> "Why do they call it rush hour when nothing moves?", Robin Williams




Posted by Darko Gavrilovic on March 26, 2005, 1:53 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

> This is what I ordered yesterday after reading Leythos' responce to my
> posting.
>
> http://www.guardsite.com/X15.asp

thats a very nice looking product. much better FW throughput than the SOHO
product line.

out of curiosity, why the x15 over the x5?


--
"Why do they call it rush hour when nothing moves?", Robin Williams


Similar ThreadsPosted
[Linksys BEFSX41} "WallWatcher" message inspires newbie confusion! March 25, 2005, 6:54 pm
Got a Linksys BEFSX41 Router/Firewall December 10, 2005, 9:58 am
linksys befsx41 firewall can block only 4 domains? August 28, 2005, 5:34 am
Linksys BEFSX41 Firewall router + ADSL2 Modem December 27, 2005, 6:01 pm
Linksys BEFSX41 router/firewall Firmware Upgrade (1/11/2006) April 24, 2006, 11:11 am
Linksys BEFSX41 Odd Behavior? May 17, 2005, 1:20 pm
Linksys BEFSX41 Crash July 24, 2006, 9:19 pm
Re: Linksys BEFSX41 Crash / D-Link DI-604(E) August 10, 2006, 2:54 pm
block yahoo messenger (linksys befsx41)? February 15, 2005, 3:56 am
VPN Server Behind Linksys Router BEFSX41 and Error 721 March 10, 2005, 3:02 pm

The site map in XML format XML site map

Contact Us | Privacy Policy