Software Firewalls

19K

Solutions

20K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hello Experts,

Can someone please take a look at my Task Manager and let me know if its normal for Bitdefender and Google to be taking up so much memory. At the moment, I'm only running one instance of Google and yet it shows 11 instances running.



Any thoughts will be greatly appreciated.
0
Protect Your Employees from Wi-Fi Threats
LVL 1
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

We are contemplating whether to use McAfee endpoint security's firewall or Windows firewalls
on our 30+ branches : the branches have some crucial Desktops running database services:
though the branches (ie spoke) connect back to our DC (ie hub), potentially some branches
may have their own broadband (or even just via 4G).

It's a debate between our Windows Desktop & our Firewall admins which one to use.

I know in previous Deep Security, I will have to create numerous 'policies' : one for each
branch though the branches have the same desktops running database services listening
on the same ports and when I upgrade the agents centrally from the EPO, had run into
issues:  modules (eg: Firewall or File Integrity Monitoring) that are not enabled previously
(say for servers), got auto-enabled.

So not sure if McAfee Firewall has similar or any other issues: kindly elaborate
0
Cannot access FTP Server (Win2016Std) from Internal.  (or from outside, when used with WordPress as a client)

FTP Server (10.0.5.15) and IIS on same server behind firewall (TMG 2010). Configured publishing rule to forward External IP (X.X,X,X) to Internal (10.0.5.15)

All firewall rules are configured. Can connect from outside by FTP client (PASV) - no problems! Do not really need to connect from LAN, but

THE PROBLEM IS:

WORPRESS SITE requires FTP Server setup on WEB Server to upload Updates from WEB Site.

When I try to ftp from WordPress it sends internal IP of the WEB Site as a client IP (10.0.5.15) not the Client IP of the Browser machine.
So, TMG does not allow internal to external loopback...

Any solution?
0
blocking webmail on Cisco Umbrella but allowing gmail, office365 links

the problem is i am allowing gmail.com and mail.google.com but when i block the webmail category it also blocks gmail. can idea what other url i need to allow?
0
Website can't be reach internal network!

I have weird issue came up. we have company website that hosted on Godaddy.com and working. I can access from outside of my network and without our router/firewall. I used my laptop directly plug into ISP modem and can access the website fine.  I can ping by ip address of the site and name of the address.  I can ping www.website.com or website.com just fine.
I can nslookup from internal computer and came up with correct ip address. I cleared the cache on internal DNS server.  I tried turn off firewall (Cisco RV345P).
None of these working. Help!!!
0
ATT access my lan techs want me to add IP address and URLS to my Windows 2012 R2 server.

Suggestions on the correct way to add them. I've added ports and etc but this is the first time to add URLS and IPs.

Ex. xxxxx.accessmylan.com IP 10.xxx.xxx.xxx
0
Apache Tomcat 8 with IIS and Apache Connectors getting null request.getRemoteUser() when trying to get to a secure application.  I have multiple applications and one in particular keeps throwing this error.  I am logged in already but when I go to this application I get this error.  I have tried the old suggestion of tomcatAuthentication="false" and that is making no difference.  This particular application is old and the newer ones built in Grails are not having issues.  A team mate thinks something in IIS is stripping something out causing this however other applications are working so it would be hard to say it is stripping things out.  This is all running on Windows server 2016.  Https is in use and there is a firewall involved.  Ports have been allowed.  Old applicaiton with the issue is running an old version of Struts.
0
I am receiving intermittent issues on a client server. After a while, users cannot access the internet or internal servers. Unfortunately, I am not on site and only have access to the logs as we need to restart the server before I can get there to minimise down time for all users.

Once the server is restarted, all users can access the internet/internal servers/share drives etc.

This has only come up over the couple of months randomly. Previously the DNS servers on the server had another IP which is the virtual server NIC (nic 2) and the TCP/IP V4 DNS had 127.0.0.1. The 169.x.x.x has been removed and the 127.0.0.1 has been changed to 192.168.1.1.

Would really appreciate what else I should be looking at as this has me stumped. Are there any ports on the firewall that need to explicitly be open?

The errors at the times of the issue commencing is Netlogon error 5774 entries. I have copied one below however have slightly changed the DNS record of the internal domain name. The IP Address 192.168.1.1 is the Server 2012 R2 DC. It is the only one on the network.

The dynamic registration of the DNS record 'DomainDnsZones.DOMAINNAME.local. 600 IN A 192.168.1.1' failed on the following DNS server:  

DNS server IP address: 192.168.1.1
Returned Response Code (RCODE): 0
Returned Status Code: 10054  

For computers and users to locate this domain controller, this record must be registered in DNS.  

USER ACTION  
Determine what might have caused this failure, …
0
Ok can someone please explain how to get my VPN IP pool talking to my inside network. Everything works fine using any connect VPN client. Assigns IP address but I can not ping inside subnet and the firewall itself cannot ping the VPN IP pool address .

update: ok now the firewall can ping connected client in the VPN IP Pool address 192.168.10.1 and it can ping the internal (inside) network but the VPN client cannot ping the inside subnet.

My goal here is to be able to launch ASDM to administer the firewall from afar. Any help would be appreciated..
0
0
Managing Security & Risk at the Speed of Business
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

i currently have a watchguard firebox with UTM and using vmware.
im currently upgrading the environment to the latest vmware and nsx.
is it recommended to eliminate the watchguard and ONLY use NSX?
0
Checkpoint R 75.46

I have installed smart center on one VM and trying to connect from one host machine via smart dashboard.

I am getting an error attached.

I can ping to smart center server and telnet on port 18190.
0
Dear Expert,

I will shut down my Checkpoint Firewall R77 and Hitachi San (model: HUS130) . Could you please provide a startup and shutdown procedure for Checkpoint and HItachi SAN manual. In addition, Will share your experience for shutdown /startup process. Thanks
0
I work in a hospital. We use the Stratus iPad app for interpretation.  We have a guest internet circuit that these iPads are on.  The circuit was recently upgraded from 35 Mbps to 100 Mbps. No other changes that i know of. Around that time the Stratus app stopped connecting. There is an asa 5505 on this circuit, but only default config is enabled.

 I took the ipad home and the app worked fine on my home wifi.  I ahve contacted the vendor and our ISP. Both claim it must be a firewall issue, but nothing has changed.  Any ideas?
0
Hello,
I use FreeBSD ipfw, I want to measure current speed in bytes per second and packets per second for monitoring.
If I have a pipe and two queues in it, ipfw doesn't give current speed when executing 'show'. If I try to measure speed by counters (ipfw rules), I don't get real speed because counters measure queue input, some packets can be dropped in queue or pipe.
Please, help.
0
I have a ubuntu server on wan. i can connect to it via ssh from windows on another ip rang.
my clint not ping it and i can't ping my client from server.
how to use X app from server i install xinit and x app on server .
firewall is disabled on ubuntu server.
0
PFSense v. 2.2.4, connected to a Comcast circuit with 30 down, 15 up.  A computer connected directly to the PFSense tests speeds at right about 30 / 15.  But if a switch is introduced, the speed drops to 2-4 / 10-12.  Several switches have been tried - all 10/100/1000, none managed or manageable.  Several computers have been tried.  Same result with each.  In each case only the testing computer and the PFSense were plugged into the switch - no other devices.  In the PFSense, the LAN interface is set to automatic and shows a connection at 1000 BT, full duplex.  What could possibly be happening that slows the internet down so significantly simply by virtue of introducing a switch?  And it should be noted that upload speeds are still good, it's just download that drops down significantly.   I do realize that the PFSense needs to be updated to a more recent version, and I will do that, but since the speed is just fine when the computer is directly connected I really don't think the version upgrade is the issue.  Any ideas are appreciated!
0
Hello, I started to configure a PFSense, version 2.4.1. I want to know if it is possible to configure an IPsec multi-WAN failover

Has anyone had any experience configuring this? I already configured the DUAL WAN Failover on the PFSense

I would like that the VPN tunnel can be able to stay up if the WAN fails over.

Thanks in advance
0
Hello,

I am trying to run PowerSchool Gradebook from our client computers that go through a forefront tmg filtering 2010.

But for some reason i get an error message i wish to share below with you.

can anyone guide me and help me whats happening?

Launch file error message:

<?xml version="1.0" encoding="UTF-8"?>
<jnlp spec="1.0+" codebase="https://ps.askosova.org/powerschool-gradebook"; version="2.8.0.7.3">
    <information>
        <title>PowerTeacher Gradebook</title>
        <vendor>Pearson School Systems</vendor>
        <description>PowerTeacher Gradebook Application</description>
        <description kind="tooltip">PowerTeacher Gradebook</description>
        <homepage href=""/>
        <icon href="wgb_dockIcon.png"/>
        <icon href="splash.png" kind="splash"/>
        <offline-allowed/>
    </information>
    <security>
        <all-permissions/>
    </security>
    <resources arch="">
        <j2se version="1.7+" initial-heap-size="256m" max-heap-size="512m" java-vm-args="-XX:MaxPermSize=384m -XX:PermSize=256m -XX:+UseConcMarkSweepGC -XX:+CMSParallelRemarkEnabled -XX:+UseCMSInitiatingOccupancyOnly -XX:CMSInitiatingOccupancyFraction=70 -XX:+ScavengeBeforeFullGC -XX:+CMSScavengeBeforeRemark" />
        <jar href="boot.jar" />
        <jar href="lib/powerschool-gradebook.jar" main="true"/>
        <jar href="lib/powerschool-httpinvoke.jar" />
        <jar href="lib/powerschool-i18n-sdk.jar" />
        <jar …
0
Cloud Class® Course: Microsoft Office 2010
LVL 12
Cloud Class® Course: Microsoft Office 2010

This course will introduce you to the interfaces and features of Microsoft Office 2010 Word, Excel, PowerPoint, Outlook, and Access. You will learn about the features that are shared between all products in the Office suite, as well as the new features that are product specific.

I have a main office running OpenVPN on Untangle v9.4 (I know, but they don't want to spend the money to upgrade and reconnect all of the offices) The remote offices are all on different subnets, and I have no problem reaching the main office by IP address or hostname from the remote office computers. From the main office, I am unable to ping or communicate with any of the remote offices. There are no issues with the main office connecting to the internet, but I am unable to communicate with the connected networks. The OpenVPN connectivity at each office is using a Ubiquiti Edgerouter-X with the config file imported and I use my laptop to support the various offices via a software client OpenVPN connection. When I connect to the OpenVPN server at the main office using my laptop, I am able to ping, use RDP, whatever, I can even use NSLOOKUP from the DC in the main office as the server and get the IP Addresses for the systems in the remote offices. Trying to run a tracert from the cli on the DC server in the main office gives me a first hop that is the LAN address of the Untangle box, but times out on every other hop. This looks like a route issue to me, but I haven't been able to add a static route in any form that allows me to communicate with the remote networks. Help!
0
Hi,

Enviroment Checkpoint + r77.20

Every time I open a FTP SSL session, IPS drops randomly the transfer. If disabled works fine.

I´ve added  exceptions to IPS  for FTP SSL but still drops sometimes sessions.

any ideas?

Regards
0
Hi team,

I want to start up my start up my SDN Cource on online can anybody give me some guidelines how to start and what to learn.

Thanks in advance

regards
suresh kumar k
0
For some reason, I can't change the setting of the interface e1 from 100full to auto.
I update the internet speed from 30mbps to 100mbps (Cable provider).
I am not getting 100mbps out from the pix501, if I connect the computer directly to the modem, I can get the 100mbps.

Looking around for a solution, someone recommended to set both interfaces (e0 and e1) to auto. E0 is already set to auto, but e1 I can't change it to auto. The pix 501 give me a message "int e1 can only be set 100full".
Why I can't change it?
Hope someone can help.
thanks for any suggestions to my issue....


PIX Version 6.3(5)
interface ethernet0 auto
interface ethernet1 100full
0
We currently use OpenVPN, as well as L2TP over IPSec VPN on our Linux servers (CentOS 6.x mostly). Both VPN servers are running properly. However, while each of the physical servers have several IPs assigned to them, the VPN is always able to run on one IP address only.

What we need:

A user connects to our server (either via OpenVPN or via L2TP over IPsec VPN), the server picks a random server IP address instead of just one for all users.

Basically, what we need is a server side IP address rotation for the VPN.
0
Dear All,
         Recently I configured TMG firewall as a proxy I make all the rules & every thing is working fine. If I login to TMG server and ping any public ip’s or any domain like google.com etc. I am able to ping but on client computer If provide them internet via TMG then are able to access but not able to ping any public ip or domain like google.com
         So please need your support to enable ping
       

Thanks in advance




Regards,
0

Software Firewalls

19K

Solutions

20K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Top Experts In
Software Firewalls
<
Monthly
>