Software Firewalls





Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

what is the difference between state full inspection and deep packet inspection ?

thanks !!!
Introduction to Web Design
LVL 12
Introduction to Web Design

Develop a strong foundation and understanding of web design by learning HTML, CSS, and additional tools to help you develop your own website.

How do I set up an exception in Avast AVG Business so as to allow an FTP server to connect to a folder on my computer?   I have a Canon WFT wireless transmitter that connects to an FTP server on my computer.   When I disable the AVG protection, the files are transmitted normally, but blocked otherwise.   How do I set up an exception to allow the files to go through.
I have 2 offices next to each other, however each office has its own firewall (different manufactures).

Office A needs to communicate with Office B with one computer. In office A I have one computer with 2 NIC cards, one configured with the 0.1 network and the other with 1.1 network.

I have a physical connection going from Office B (Sonicwall) to the second NIC card in the PC in Office A.

When I go to office B I can ping office A, but when I go to office A and try to ping office B, I don't get a response.

The PC in office A is running Windows 10 Pro

Question, can this set-up work with 2 NIC cards in one PC to create the connection across the two networks?

I have tried creating routing rules in the firewall, but no success so far. I can only ping from office B, but not the other way around.

Thanks in advance
Hi all,

I'm looking for "firewall" software which I can install on my Windows 2008 server so clients can securily connect to this server.
Is this possible and which is a trustworthy vendor for this. I know I can also use the built-in but more and more systems like Apple do not really support it anymore and because this server is behind a shared connection a hardware firewall is not possible.

Thanks for your advice in this matter.

Best regards
I am looking to purchase Firewall. Anti-malware router.  It's for my small business of currently about: 30 people but will grow up to 100 units within the next 1-2 years.

The problem is we had a ransomware attack couple of days back and it's made us more aware.

The other thing to take note is: We don't have in house IT professionals, so we hire professionals from all over the world to work on our servers, they sometimes use RDP to login. or team viewer.

We use a VM ware, specifically promox, so we considering using: nakivo for back up also.

Our ISP guy recommended we used: Mikrotik RB/1100AHX2 Routerboard RouterOS Level 6 but he thinks we are small for it, and I think there's something better already.

I want to invest for the next 5years. I want to buy something that will take us to the next level, yet keep us funtional.

I don't know if we can also use it to block certain sites, manage bandwidth for users in the office, anything that'll generally keep security really up above board. Thank you.
I have installed Windows 2019 with remote desktop gateway, but i cannot change the default port from 443 to another port. It gives an error that the port cannot be changed. I tried other portnumbers, but no luck. The exact error code is: Changes cannot be made in firewall-rules exception. Event id 4002

I see the current firewall rule, but i cannot change it because it is a defined rule (made by Windows firewall). 2 questions:

1) Can i change a defined rule of the world wide web port 443, made by the windows firewall to another port?
2) When i change the port in my remote desktop gateway and firewall rules to for example 10101, does it give me access from outside to the remote gateway server, or do i get into problems because i need to set the remote desktop gateway (client site) to a differrent portnumber (for example: ?

Please advice
I have a sonic-wall firewall . There are a lot of access roles such as rdp and http being forwarded to internal servers . I need to shot down all of them  for now . What is the easiest way . I just need outgoing traffic to work for now and vpn to work .
Hi Experts,

I have been noticing some my endpoint computers going to this site  I am not sure why or what application/s are generating this traffic.

Have you seen this in your environments and should I blocked this site ?
Is there a cheap sheet for identifying security issues and their solutions to the challenges.  I wanted to get a list of possible security concerns and then the solutions for such a concern.
Windows 10 Version 1809  Build 17763.107
Windows Defender Security Center says:
"Windows defender firewall is using settings that may make your device unsafe"

I reset the firewall and it seemed to work in fixing this.,
Then I applied our standard script which adds firewall settings.
Now the message is back.
But how to find the problem?
Learn SQL Server Core 2016
LVL 12
Learn SQL Server Core 2016

This course will introduce you to SQL Server Core 2016, as well as teach you about SSMS, data tools, installation, server configuration, using Management Studio, and writing and executing queries.

We have an internal program that uses a public certificate for security. We need to lock down the application on devices so they do not have any access outside of the program (client connects to a server using several ports) and Logmein (for remote support).

I am using the Windows Firewall to block outbound traffic except for traffic we will allow for the program. The problem I am having is that the application will not run because the public certificate will not verify the certificate chain (for security on the user login). I have tried to turn off settings for revocation in Internet Options, but that is not what the problem is. It seems the app needs access to the internet to verify the certificate. So in Windows Firewall, I need to know what exactly do I need to open outbound?
Unable to see shares when I access server 2016 through UPN path from any client/server on same domain. I believe it could be firewall rule SMB over TCP which is blocked. I can ping the server but can't access it.

I'm running Windows server 2016, trial version
i have windows 2016 server
I have data coming in on port 3299
When i hits the server i need to remap it to port 9013 as there is an app on this server which is listening on this port

is this possible/
There is not router, the server sits directly on the internet so it needs to be done it windows
1.pngso all of a sudden some emails stop flowing and my connector is not validating, been setup for years and we did not change any server or network settings

i have Office 365 and a hybrid server - exchange 2010

the emails that are failing are coming from my mercury server and flows thru my exchange to office 365. i have contacted microsoft support but they are saying its an internal issue.

I have a remote worker that needs access to my server for development processes.

They only have a dynamic ip address and using a VPN isnt very practical in this paticular situation.

Am i able to use iptables to open up a port to just their fqdn?

Description of problem:
I have this a text file

# Generated by iptables-save v1.4.21 on Fri May 11 16:48:14 2018
:PREROUTING ACCEPT [104870:20593583]
:INPUT ACCEPT [116564:21221907]
:OUTPUT ACCEPT [17993376:1098269263]
:POSTROUTING ACCEPT [17993377:1098269323]
-A PREROUTING -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 4443
-A OUTPUT -d -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 4443
# Completed on Fri May 11 16:48:14 2018
# Generated by iptables-save v1.4.21 on Fri May 11 16:48:14 2018
:INPUT ACCEPT [104255:21990084]
:OUTPUT ACCEPT [116465543:24365206954]
-A INPUT -p tcp -m state --state NEW -m tcp --dport 4443 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 8081 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 8443 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 8080 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 8081 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 8443 -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited 
-A FORWARD -p tcp -m tcp --dport 4443 -j ACCEPT
-A FORWARD -p tcp -m tcp --dport 8081 -j ACCEPT
# Completed on Fri May 11 16:48:14 2018

Open in new window

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1.Place the File in a Tmp directory as iptables-export-ref2.txt
2.Run the Command: sudo iptables-restore -t < /tmp/iptables-export-ref2.txt
3. Error: Iptables-restore v1.4.21: iptables-restore: unable to initialize table 'nat

Actual results:
It gives error : iptables-restore v1.4.21: iptables-restore: unable to initialize table 'nat

Expected results:

Additional info:
I am not sure what is missing here and what needs to be done to get this implemented.
I have pfsense with multi networks
1 wan
2 lan
3 servers
both lan and servers allowed for internet
but lan to server allowed for specific ip and port
the lan can access to wan and that should be not.
what I have to enable internet for lan without access to servers ?
Windows Server 2008 Firewall

I'd like to restrict Remote Desktop access to the server to just one external IP, and one LAN IP.

Have created an inbound rule for the RD port.

If I enter the external IP in the rule scope options and leave local IP as any, then only the external IP connects but no local IPs
can connect. If I enter the local IP specifically then it blocks access from the external IP even though its specifiied.

It appears I can do one or the other only in the rule.

How do I configure the firewall to allow RD access from one specific internal IP and one specific external IP only ?

Thank you
hi i have 13 hour .mpg video file which i am trying to play in my phone which is not working

how to conver tthat to say mp4 which easily play in my anroid phone.
i am using mx player to play videos on phone

any free good tool for this conversion

please advise
OWASP: Forgery and Phishing
LVL 12
OWASP: Forgery and Phishing

Learn the techniques to avoid forgery and phishing attacks and the types of attacks an application or network may face.

We have a user with a HP Officejet 6830 that we are trying to setup with HP EConnected/EPrint (print over Internet).  Everything goes smoothly throughout the setup, however, upon adding the printer the dot is orange not green on the HP EConnected site.  However, in checking the printer locally he have a green check mark for EPrinting.

The user has a basic home network with a AT&T UVerse (not sure of the exact manufacturer).  Do you need to open up certain ports for EPrint to work on one of these routers?  (In the past wet set one up on a home network with a Negear router and it was plug and play--green dot next to printer not orange.
Looking to find software that we can install on a certain couple of users PC's that will send their manager a log of what websites she is visiting, times and how long?

Don't want to spend 1000 dollars, just something basic.
A currently known issue with pfSense 2.4.4 when installing or updating.
I am doing my first sbs 2011 Standard to office 365 hosted exchange migration.

I am using migration wiz and 4 of 5 mailboxes failed. one talked of actively refiusing the connection.

It reminded me - there's a watchguard firewall at the sbs 2011 location.  I remember once someone else having a problem with too much data going to /. from 1 place that the watchguard shut it off - there's a setting to limit amount of data to / from 1 external location that was on by default.

Anyone know where that is?  Could that be why they are failing the migration?

can you tell me where to look to disable that if it's on. and maybe where to look to see if that feature was activatted in the last 48 hours?

Hi all,
We have to configure both scope and protocols on Windows firewall for our failover clustering nodes.
There is some problems such as renewing clustering APIPA IP addresses.
How can we configure these IP addresses on firewall properly?
I've checked the below ranges of local IP addresses but nodes will be down after enabling firewall. We should keep block Inbound and Outbound on firewall.
Sharing any experiences is appreciated.
I have a PowerShell script that runs a number of commands that look like this (with various names involved):
Set-NetFirewallRule -DisplayName "Remote Event Log Management (RPC)" -RemoteAddress,LocalSubnet -Profile Private -Enabled True

Open in new window

One problem with this is that it creates duplicate firewall rules.  So, if we run the script twice then we are assured of getting at least 2 identical rules.
(It's easier to run the script than to decide whether to run it!).

So, I have two objectives that I've not been able to reasonably figure out on my own:

1) I want to remove the duplicate firewall rules that this process has created.
2) I want to add the same firewall rules to computers that have no duplicates, without creating duplicates once more.
3) I want all of this wrapped up into two scripts.

How might you suggest this be done?

Software Firewalls





Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.