Do you need a firewall ?

If you have a properly configured router and a well configured proxy server, do you still need a firewall of some sort?

No low level technical info required, just concepts at this stage.

Cheers,
chrisrip
LVL 1
Chris RipollMaster of NoneAsked:
Who is Participating?
 
lrmooreCommented:
It really depends on several things:
- brand/model of router
- features of that router
- which proxy software you are using
- how much would you loose to a DOS attack
- how valuable is your data
- how secure are your systems inside the network

A good firewall provides stateful packet inspection, prevention of DOS, DDOS, and looks further into the packets than either a router or proxy.

A good security strategy is a layered defense or "defense in depth" which would consist of a good, properly configured edge router, a good firewall, well defined security policies, and a program of monitoring, testing, and refining the implementation of those security policies.

The bottom line is to spend the right amount of money to protect the data you hold. For example, if you hold individual's medical history data, then there are legal requirements you have to meet regardless of cost. If you hold credit card numbers you want to spend as much as you need to ensure the privacy of those numbers and win the trust of your customers. If you're a small office with a personal web server so Grandma can see photos of the grandkids, then a NAT router is probably all you need.
0
 
SysExpertCommented:
In addition to the above advice, I would like to mention that a free firewall like Zonealarm from Zonelabs, will also catch a lot of Spyware that is sending info from inside the computer, out to the Internet !!

I hope this helps !
0
 
JeffHarpCommented:
My response is YES.  I am running both a router with a firmware firewall installed and a software firewall (Norton Internet Security) to cover all aspects of it.  If I didn't believe it was necessary, I wouldn't have spent the money on either of them, much less both of them.  I caught strange activity the first week I set them up and blocked it.  And, I'm on a small DSL server.  If it is just for dial-up service, I would take my chances.  But, for DSL or cable I think it is very necessary.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.