[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More


Software Firewalls





Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

hi i have 13 hour .mpg video file which i am trying to play in my phone which is not working

how to conver tthat to say mp4 which easily play in my anroid phone.
i am using mx player to play videos on phone

any free good tool for this conversion

please advise
How the Cloud Can Help You as an MSSP
How the Cloud Can Help You as an MSSP

Today, every Managed Security Service Provider (MSSP) needs a platform to deliver effective and efficient security-as-a-service to their customers. Scale, elasticity and profitability are a few of the many features that a Cloud platform offers. Register today to learn more!

We have a user with a HP Officejet 6830 that we are trying to setup with HP EConnected/EPrint (print over Internet).  Everything goes smoothly throughout the setup, however, upon adding the printer the dot is orange not green on the HP EConnected site.  However, in checking the printer locally he have a green check mark for EPrinting.

The user has a basic home network with a AT&T UVerse (not sure of the exact manufacturer).  Do you need to open up certain ports for EPrint to work on one of these routers?  (In the past wet set one up on a home network with a Negear router and it was plug and play--green dot next to printer not orange.
Looking to find software that we can install on a certain couple of users PC's that will send their manager a log of what websites she is visiting, times and how long?

Don't want to spend 1000 dollars, just something basic.
A currently known issue with pfSense 2.4.4 when installing or updating.
I am doing my first sbs 2011 Standard to office 365 hosted exchange migration.

I am using migration wiz and 4 of 5 mailboxes failed. one talked of actively refiusing the connection.

It reminded me - there's a watchguard firewall at the sbs 2011 location.  I remember once someone else having a problem with too much data going to /. from 1 place that the watchguard shut it off - there's a setting to limit amount of data to / from 1 external location that was on by default.

Anyone know where that is?  Could that be why they are failing the migration?

can you tell me where to look to disable that if it's on. and maybe where to look to see if that feature was activatted in the last 48 hours?

Hi all,
We have to configure both scope and protocols on Windows firewall for our failover clustering nodes.
There is some problems such as renewing clustering APIPA IP addresses.
How can we configure these IP addresses on firewall properly?
I've checked the below ranges of local IP addresses but nodes will be down after enabling firewall. We should keep block Inbound and Outbound on firewall.
Sharing any experiences is appreciated.
I have a PowerShell script that runs a number of commands that look like this (with various names involved):
Set-NetFirewallRule -DisplayName "Remote Event Log Management (RPC)" -RemoteAddress,LocalSubnet -Profile Private -Enabled True

Open in new window

One problem with this is that it creates duplicate firewall rules.  So, if we run the script twice then we are assured of getting at least 2 identical rules.
(It's easier to run the script than to decide whether to run it!).

So, I have two objectives that I've not been able to reasonably figure out on my own:

1) I want to remove the duplicate firewall rules that this process has created.
2) I want to add the same firewall rules to computers that have no duplicates, without creating duplicates once more.
3) I want all of this wrapped up into two scripts.

How might you suggest this be done?

how to understand this error and resolve it correctly. tks

The scenario: Windows server behind a firewall (pFsense) is initiating an FTP connection to an external service. The external service is stating the firewall is passing the internal IP address to their FTP server in the connection setup.

I've reviewed the firewall settings and don't see how the firewall could be doing this. I don't have access to the windows server or the software initiating the connection to review them.

Any suggestions on where to look?

I like the Zonealarm "Extreme" Pro firewall. But I don't like its management options.

My biggest irritation is the difficulty in managing the program list. Mine regularly bloats to over 2000 programs. The vast majority of which are duplicates.
I can understand why that would happen if a program has changed but the vast majority of the time, they haven't so my first question is
1 Why do we get duplication when a program in the list hasn't changed?

Next, once a program has been authorised either manually or automatically, it often has its "outbound trusted" flag set true. There are almost no programs I want sending data outbound without asking my permission first. So I find I need to "correct" a few hundred of them. Unlike deleting programs, which can be done in bulk (select a bunch, then click "Remove" and they all go) the ONLY way to switch off that "outbound trusted" flag is one at a time. That's insane. so

2 anyone know a way to switch off (or on) such flags in bulk? and
3 is there a way to make the default flag "Ask"

Ideally there would be a file we could hack outside zonealarm with all these settings and use standard database commands (or even text "search and replace" commands) to do bulk editing but I appreciate that would break their security model so I don't expect anyone to come back with that option but something like that, within ZA, is desperately needed

Finally, we used to be able to disable things, like the tvdebug.log by rightclicking the …
OWASP: Threats Fundamentals
LVL 12
OWASP: Threats Fundamentals

Learn the top ten threats that are present in modern web-application development and how to protect your business from them.

We have installed a PBX on AWS and connected it to our on-prem Router via VPN.

My on-prem router is connected to the SIP provider via a physical connection with another on-prem MUX device (device given by sip provider).

All connections are working fine, EXCEPT, my SIP provider has a condition that all connections to their server must originate from a specific IP that they have assigned to us.

Since AWS machine is connected via VPN, all calls from PBX are picking up the IP of the AWS machine as "source IP".

For resolving this, i need to replace / masquerade / NAT / change the IPs of all connections from AWS machine's IP to SIP provider's assigned IP. Someone suggested i need NAT loopback/reflection for this. Someone also suggested packet forwarding. someone suggest IP masquerading.

Please guide how can this be done?

Please help...
Scenario:  We have users that use laptop/desktops to connect to our RDP farm, we also have some “local users” that work on local applications using their network shares.
-      The group policy connects their H: drive to a network share, we want to only allow connection to the file server whilst on the remote desktop (security reasons and to control access).
-      We also have a small group of users that will need to connect to the file server e.g. connect their network shares
-      Servers are in a datacentre, including remote desktop servers
-      Users are at a number of sites (different IP/subnet)
We are trying to use the server firewall rule “File and Printer Sharing (SMB-In)" to limit connections from named servers/computers (remote desktop machines) and an OU group containing the limited list of approved users.
-      Is this the best way to do this and
-      Will the firewall allow me to limit (as above)
All assistance gratefully received…
My windows server is flooded with 5152, 5157 logs for port 53. i have disabled DNS service and also blocked 53 port but still no success.
 I have a windows 10 PC (domain joined on Windows 2008 network) that I can ping it by IP address neither by IP address nor by name.
 But that computer can connect to the internet, domain, mapped drive ... everything works normal from that computer, including I can connect to that computer using Splashtop remote software too from outside of the network.
 I discovered this weird situation when I failed to RDP into that computer. First I ran firewall.cpl and made sure that REMOTE DESKTOP was checked for domain, private and public.
 I went to the domain controller and confirmed that IP address and computer name was registered in DNS manager and DHCP server. Other workstation computers can ping each other by computer name and IP address.
 What can I do to troubleshoot this issue?

Dear Experts,

I have a set of fortigate firewall policies which I need to duplicate on a cisco router.

I have done most of the point A to point B.

The issue I have now is the NAT and there is an IP Pool, is there a guide on how I can translate the rules from firewall to cisco router?

Any help is appreciated.
I am deploying pfSense firewall following the topology bellow:
My Network Topology : Router + pfSense + FW1 (Router connected to Internet) + Internet Service Provider + Internet WebsiteWhere FW1 is a router connected to Internet using a leased line connection, and pfSense firewall is located in a BACKBONE network, different as users networks.
I add too, that this is a new setup of this firewall, and connectivity in both sides is verified, i mean:
  • Connection to internet : i was able to download new package SQUID/SQUIDGard from Package Manager
  • Connection to the LAN : i can access firewall from  my pc, and i can see SQUID error message, when i try to open a website
The problem now, I want to grant PC IP address authorization to access Internet. I created a RULES for both HTTP and HTTPS protocols, but i still cannot access Internet.
And the firewall, says that i have not the right to do so.
I'd appreciate any help from you Experts.

TrendMicro IWSVA latest version.

Catergory filtering with HTTP works fine but not with HTTPS websites.

Any idea?

I have been using an Excel 2016 VBA program that uses XMLPRC to upload some documents to a website.
This program has been in use for a number of years now, but it has just started to fail on my Windows 10 machines.

I see some messages in the Security Event log saying that the The Windows Filtering Platform has blocked a packet. Event ID 5152
I have added Excel to the Firewall, but doesn't seem to change.
The Windows Filtering Platform has blocked a packet.

Application Information:
	Process ID:		0
	Application Name:	-

Network Information:
	Direction:		Inbound
	Source Address:
	Source Port:		443
	Destination Address:
	Destination Port:		54377
	Protocol:		6

Filter Information:
	Filter Run-Time ID:	103400
	Layer Name:		Transport
	Layer Run-Time ID:	13

Open in new window

Is there somewhere else I can find details, or how can I allow these through?
Hi Experts

I am looking for a router capable of delivering a DHCP range of  /19 or above, with DSL and ethernet WAN ports |(VDSL) for large applications.  On-board wifi is not required.  L7 firewall an advantage
Can you advise?  Many thanks in advance
PMI ACP® Project Management
LVL 12
PMI ACP® Project Management

Prepare for the PMI Agile Certified Practitioner (PMI-ACP)® exam, which formally recognizes your knowledge of agile principles and your skill with agile techniques.

i have pfsens with snot package ... and i enabled on wan and lan wit block mode
i add some alerts so suppress lists for wan and lan ,,, already create two file one for wan and the second for lan
some alerts that is in suppress list is going to blocked ! so where is the problem ?
i have a Cisco ASA 5520 and 500MB internet/bandwidth line, the problem is the throughput on the FW is low and it throttles the bandwidth. Execs don't want me to upgrade now so i was wondering is there some kind of add on i can use  

ASA 5520
1: ASA5520, 512 MB RAM, CPU Pentium 4 Celeron 2000 MHz
2: Up to 2048MB RAM
3: Intel Celeron M Processor 450 2.0GHz
4: Cavium Nitrox Lite CN1010
Hi All,

I need some assistance setting up the below. I've got 3 "subnets" to set up internally. All must be able to reach the internet through the suppliers router.

The networks are 2x /26 and 1x /27. VLANS 601 & 603 are desktop pc's. VLAN 602 will be Cisco phones. 601 and 603 do not need any seperation, they're just to cover the seperate DHCP ranges. DHCP will be provided by an external source (hopefully) through a VPN setup on the ASA Firewall. I'm looking to setup outside interface, inside interface and access for all vlans.

Is anyone able to provide a sample config on how I could get this working?

Network Overview

is there any free open source gui for modsec managment and monitoring?
I looking for any free firewall software appliance. (Like the old version of sophos. The new version of Sophos provide only 30 days software appliance)
I don't know if there is any firewall which provide a software appliance free and without time restriction.
I want to change pfsense logo in the web gui
but I cant find the image file.
I am using the last version of it.

Software Firewalls





Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.