Local software firewall policy best practices

I wanted to know if the experts thought turning off local firewall software (window native) was a best practice. In the past we had always done that because we use Cisco or SonicWALL (a true firewall), software firewalls are/were weak, and they caused network comm issues. This thinking was back in XP. Now we are running Win7. Let me know what you think and WHY! Thanks! :)
LVL 30
Blue Street TechLast KnightsAsked:
Who is Participating?
IanThConnect With a Mentor Commented:
in window 7 the built in firewall is more secure than previous version you now can use imbound and outband rules  
jakethecatukConnect With a Mentor Commented:
The Cisco and Sonicwall protect you from nasties outside your network - what about inside your network?

Personally, I would leave it on by default as it's not a bad firewall and any protection is better than no protection.
kdearingConnect With a Mentor Commented:
Definitely keep the Windows firewall on.
There are many virii/spyware that attempt to spread infection by using open shares, etc.
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

prerakgConnect With a Mentor Commented:
some s/w firewalls conflicts with windows based firewalls and they shut them down like in Mcafe HIPS where it turns off windows firewall.

If you dont have any s/w firewall then you must maintain your local windows based firewall and in case of s/w based if you can get one like Zonealarm pro something, i will recommend it as there you can make expert based rules up there like stealth and cleanups.
David Johnson, CD, MVPConnect With a Mentor OwnerCommented:
the problem is you have to be able to block within your network or you run the risk of someone bringing in a piece of malware (via the net, or usb key) and with no firewalls behind your hardware firewall your client machines are wide open to attack.
Blue Street TechLast KnightsAuthor Commented:
Thanks for your replies everyone!
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.