I've recently begun using a router for the 1st time, a Netgear WGR614v6, to connect a pc in one room and a mac laptop in another to cable Internet. Router is wireless, but I have it hardwired & the wireless turned off. I've always heard that routers can be used as firewalls, and that they are in fact better than a software firewall. However when reading the documentation & scanning the setup, I really don't see anything which appears to be analogous to the settings/operation of the software firewalls I am familiar with (I've used Norton, Mcafee, Zone Alarm & am currently using Sygate personal firewall). For instance, there doesn't appear to be a way to configure what applications can access the Internet & when (typically the software type will say "program x is attempting to access the Internet, allow?"). Under Content Filtering, I see settings for Logs, Keyword filtering, Services blocking, and email notification, but nothing else. I see you can block an entire domain, but I don't see how this could be an efficient way to block threats (one address at a time). Are there any suggestions/good sites on getting the most out of a router as a firewall? Searching has turned up nothing.

TIA

Sheila

A hardware firewall is NOT sufficient protection... You need a good software firewall and there are several good ones available for free, so there is no reason not to use one... A hardware firewall can provide some additional protection...

I always wondered about that as well. It just seems to make sense that a hardware based firewall would have to be updated so often to be effective against newly developed threats... that it wouldn't be as effective as software.

One of the main reasons for having a SOFTWARE firewall installed as well as a HARDWARE firewall (if there is one built into the router), is that it lets you see, monitor, and control, what LEAVES your computer. Some software installs less desireable parts and a software firewall enables you to stop this from calling home.

Budfred-Thanks for the reply. I am using the Sygate firewall I've had for some time (though I don't know how long it will continue to be useful, since Sygate was bought by symantec who apparently is no longer supporting the free version, surprise, surprise) I just thought I might as well get whatever added protection the router affords, if I can get info on doing that.

Sheila

The router generally protects the network from all unsolicited incoming messages. If a message comes in that does not correspond to an ip address the router has allocated to a PC or laptop connected to it, the message goes nowhere, mainly becasue the router can't find a recipient. A great and easy way to build a firewall. As mentioned earlier you need a software firewall on each machine to stop any malware sending out from your kit (the router will not attempt to stop it). It will also stop any message that gets through the router. I use Zonealarm, a free firewall, though others also recommend Kerio. You may want to swap from Sygate at some point if you feel unsure about continued support.

This site has some general comments about configuring the firewall aspect of routers.http://www.pcstats.com/articleview.cfm?articleid=1618&page=6

I use Zonealarm, a free firewall, though others also recommend Kerio. You may want to swap from Sygate at some point if you feel unsure about continued support.

Thanks for the reply. I used ZA (paid version) briefly when I had Wideopenwest as my ISP in another state, I dumped it because it drastically reduced connect speeds, which apparently at the time was a well documented problem. That's when I switched to Sygate. I'll check out Kerio, haven't heard of that one.

Sheila

One of the main reasons for having a SOFTWARE firewall installed as well as a HARDWARE firewall (if there is one built into the router), is that it lets you see, monitor, and control, what LEAVES your computer. Some software installs less desireable parts and a software firewall enables you to stop this from calling home.

Agreed! That's why whenever I have changed firewalls, I always set them so each app has to ask the 1st time before connecting. Amazing the crap that tries to transfer god knows what behind your back. :mad:

Sheila

This site has some general comments about configuring the firewall aspect of routers.http://www.pcstats.com/articleview.cfm?articleid=1618&page=6

Thanks! I figure as long as I have the thing I might as well get whatever protection out of it I can!

Sheila

Kerio:

http://www.sunbelt-software.com/Kerio.cfm