Local software firewall policy best practices

I wanted to know if the experts thought turning off local firewall software (window native) was a best practice. In the past we had always done that because we use Cisco or SonicWALL (a true firewall), software firewalls are/were weak, and they caused network comm issues. This thinking was back in XP. Now we are running Win7. Let me know what you think and WHY! Thanks! :)
LVL 31
Blue Street TechLast KnightAsked:
Who is Participating?
 
IanThConnect With a Mentor Commented:
in window 7 the built in firewall is more secure than previous version you now can use imbound and outband rules  
0
 
jakethecatukConnect With a Mentor Commented:
The Cisco and Sonicwall protect you from nasties outside your network - what about inside your network?

Personally, I would leave it on by default as it's not a bad firewall and any protection is better than no protection.
0
 
kdearingConnect With a Mentor Commented:
Definitely keep the Windows firewall on.
There are many virii/spyware that attempt to spread infection by using open shares, etc.
0
Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

 
prerakgConnect With a Mentor Commented:
some s/w firewalls conflicts with windows based firewalls and they shut them down like in Mcafe HIPS where it turns off windows firewall.

If you dont have any s/w firewall then you must maintain your local windows based firewall and in case of s/w based if you can get one like Zonealarm pro something, i will recommend it as there you can make expert based rules up there like stealth and cleanups.
0
 
David Johnson, CD, MVPConnect With a Mentor OwnerCommented:
the problem is you have to be able to block within your network or you run the risk of someone bringing in a piece of malware (via the net, or usb key) and with no firewalls behind your hardware firewall your client machines are wide open to attack.
0
 
Blue Street TechLast KnightAuthor Commented:
Thanks for your replies everyone!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.