Software Firewalls

19K

Solutions

20K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have 2 offices next to each other, however each office has its own firewall (different manufactures).

Office A needs to communicate with Office B with one computer. In office A I have one computer with 2 NIC cards, one configured with the 0.1 network and the other with 1.1 network.

I have a physical connection going from Office B (Sonicwall) to the second NIC card in the PC in Office A.

When I go to office B I can ping office A, but when I go to office A and try to ping office B, I don't get a response.

The PC in office A is running Windows 10 Pro

Question, can this set-up work with 2 NIC cards in one PC to create the connection across the two networks?

I have tried creating routing rules in the firewall, but no success so far. I can only ping from office B, but not the other way around.

Thanks in advance
existing-connections.pdf
0
HTML5 and CSS3 Fundamentals
LVL 12
HTML5 and CSS3 Fundamentals

Build a website from the ground up by first learning the fundamentals of HTML5 and CSS3, the two popular programming languages used to present content online. HTML deals with fonts, colors, graphics, and hyperlinks, while CSS describes how HTML elements are to be displayed.

I am looking to purchase Firewall. Anti-malware router.  It's for my small business of currently about: 30 people but will grow up to 100 units within the next 1-2 years.

The problem is we had a ransomware attack couple of days back and it's made us more aware.

The other thing to take note is: We don't have in house IT professionals, so we hire professionals from all over the world to work on our servers, they sometimes use RDP to login. or team viewer.

We use a VM ware, specifically promox, so we considering using: nakivo for back up also.

Our ISP guy recommended we used: Mikrotik RB/1100AHX2 Routerboard RouterOS Level 6 but he thinks we are small for it, and I think there's something better already.

I want to invest for the next 5years. I want to buy something that will take us to the next level, yet keep us funtional.

I don't know if we can also use it to block certain sites, manage bandwidth for users in the office, anything that'll generally keep security really up above board. Thank you.
0
I have installed Windows 2019 with remote desktop gateway, but i cannot change the default port from 443 to another port. It gives an error that the port cannot be changed. I tried other portnumbers, but no luck. The exact error code is: Changes cannot be made in firewall-rules exception. Event id 4002

I see the current firewall rule, but i cannot change it because it is a defined rule (made by Windows firewall). 2 questions:

1) Can i change a defined rule of the world wide web port 443, made by the windows firewall to another port?
2) When i change the port in my remote desktop gateway and firewall rules to for example 10101, does it give me access from outside to the remote gateway server, or do i get into problems because i need to set the remote desktop gateway (client site) to a differrent portnumber (for example: homeserver.testing.it:10101) ?

Please advice
0
I have a sonic-wall firewall . There are a lot of access roles such as rdp and http being forwarded to internal servers . I need to shot down all of them  for now . What is the easiest way . I just need outgoing traffic to work for now and vpn to work .
1
Is there a cheap sheet for identifying security issues and their solutions to the challenges.  I wanted to get a list of possible security concerns and then the solutions for such a concern.
0
Unable to see shares when I access server 2016 through UPN path from any client/server on same domain. I believe it could be firewall rule SMB over TCP which is blocked. I can ping the server but can't access it.

I'm running Windows server 2016, trial version
error.png
0
i have windows 2016 server
I have data coming in on port 3299
When i hits the server i need to remap it to port 9013 as there is an app on this server which is listening on this port

is this possible/
There is not router, the server sits directly on the internet so it needs to be done it windows
0
Hello,
I have pfsense with multi networks
1 wan
2 lan
3 servers
both lan and servers allowed for internet
but lan to server allowed for specific ip and port
the lan can access to wan and that should be not.
what I have to enable internet for lan without access to servers ?
thanks.
0
Hi all,
We have to configure both scope and protocols on Windows firewall for our failover clustering nodes.
There is some problems such as renewing clustering APIPA IP addresses.
How can we configure these IP addresses on firewall properly?
I've checked the below ranges of local IP addresses but nodes will be down after enabling firewall. We should keep block Inbound and Outbound on firewall.
Sharing any experiences is appreciated.
0
Hi,

how to understand this error and resolve it correctly. tks

Screenshot_1.jpg
0
Introduction to R
LVL 12
Introduction to R

R is considered the predominant language for data scientist and statisticians. Learn how to use R for your own data science projects.

I like the Zonealarm "Extreme" Pro firewall. But I don't like its management options.

My biggest irritation is the difficulty in managing the program list. Mine regularly bloats to over 2000 programs. The vast majority of which are duplicates.
I can understand why that would happen if a program has changed but the vast majority of the time, they haven't so my first question is
1 Why do we get duplication when a program in the list hasn't changed?

Next, once a program has been authorised either manually or automatically, it often has its "outbound trusted" flag set true. There are almost no programs I want sending data outbound without asking my permission first. So I find I need to "correct" a few hundred of them. Unlike deleting programs, which can be done in bulk (select a bunch, then click "Remove" and they all go) the ONLY way to switch off that "outbound trusted" flag is one at a time. That's insane. so

2 anyone know a way to switch off (or on) such flags in bulk? and
3 is there a way to make the default flag "Ask"

Ideally there would be a file we could hack outside zonealarm with all these settings and use standard database commands (or even text "search and replace" commands) to do bulk editing but I appreciate that would break their security model so I don't expect anyone to come back with that option but something like that, within ZA, is desperately needed

Finally, we used to be able to disable things, like the tvdebug.log by rightclicking the …
0
We have installed a PBX on AWS and connected it to our on-prem Router via VPN.

My on-prem router is connected to the SIP provider via a physical connection with another on-prem MUX device (device given by sip provider).

All connections are working fine, EXCEPT, my SIP provider has a condition that all connections to their server must originate from a specific IP that they have assigned to us.

Since AWS machine is connected via VPN, all calls from PBX are picking up the IP of the AWS machine as "source IP".

For resolving this, i need to replace / masquerade / NAT / change the IPs of all connections from AWS machine's IP to SIP provider's assigned IP. Someone suggested i need NAT loopback/reflection for this. Someone also suggested packet forwarding. someone suggest IP masquerading.

Please guide how can this be done?

Regards.
Network-Diagram--1-.jpg
0
Hello,
I am deploying pfSense firewall following the topology bellow:
My Network Topology : Router + pfSense + FW1 (Router connected to Internet) + Internet Service Provider + Internet WebsiteWhere FW1 is a router connected to Internet using a leased line connection, and pfSense firewall is located in a BACKBONE network, different as users networks.
I add too, that this is a new setup of this firewall, and connectivity in both sides is verified, i mean:
  • Connection to internet : i was able to download new package SQUID/SQUIDGard from Package Manager
  • Connection to the LAN : i can access firewall from  my pc, and i can see SQUID error message, when i try to open a website
The problem now, I want to grant PC IP address authorization to access Internet. I created a RULES for both HTTP and HTTPS protocols, but i still cannot access Internet.
And the firewall, says that i have not the right to do so.
I'd appreciate any help from you Experts.
Regards.
0
Hi,

TrendMicro IWSVA latest version.

Catergory filtering with HTTP works fine but not with HTTPS websites.

Any idea?

regards
0
hello
is there any free open source gui for modsec managment and monitoring?
thanks.
0
I looking for any free firewall software appliance. (Like the old version of sophos. The new version of Sophos provide only 30 days software appliance)
I don't know if there is any firewall which provide a software appliance free and without time restriction.
0
Hello,
I want to change pfsense logo in the web gui
but I cant find the image file.
I am using the last version of it.
thanks.
0
Problem with customers sending/receiving documents from server, running SolarwindServer har returned after Windows Update
After Windows Update port 22 i closed
If I stop the windows firewall, I still have the issue and according to traceng, port 22 is close even if firewall has been stopped
I only have a firewall setting for inbound port 22 (see attached files)

My hosting company solve the issue - they ask if there is an update avaiable for Solarwind SCP Server ver. 1.0.4.9?
0
We have Migrated all the servers to a new domain.TMG  SERVER 2010 stop responding after joining to a new domain.in the event log following errors are logged

old domain was abc.gov.ca

new domain is xyz.gov.ca

1-the kerberos client received s krb_ap_err_modified error from the server dm-tmg01$.the target server name used was ldap/dm-tmg01.abc.gov.ca:2171.this indicate that the target server failed to decrypt the ticket provided by the client.

2-Windows Could not start the microsoft Forefront TMG Managed control Service On local Computer Error:1068

3-Windows Could not start the microsoft Forefront TMG job schedular Service On local Computer Error:1068

4-Windows Could not start the microsoft Forefront TMG Firewall Service On local Computer Error:1068
0
Become a Certified Penetration Testing Engineer
LVL 12
Become a Certified Penetration Testing Engineer

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

Dear Experts
We have hosted SugarCRM application on premise and for external users we have configured firewall that is hardware appliance fortigate 60C to function as SSL Web VPN where the users login to the firewall appliance portal and from here they access CRM application, they are able to login to the CRM through the  web VPN portal but the dashboard reports are not showing up, it shows blank dashboard but when we access directly to the CRM application we are able to see the dash board reports, please help me understand to where things are going wrong and how to fix it please.
0
VAPT Test from fortinet.  I tested using this http://metal.fortiguard.com/
Now I want to test from outside by typing public IP.
IS there anyone who can guide me?
0
hello,
I have run ubuntu 18.4 lts
I install suricata by flowing these step:
https://hostpresto.com/community/tutorials/install-and-configure-suricata-ids-on-ubuntu-16-04/
everything is fine but I didn't understand where I have to put this server
I have main getaway --- > lan

so it will be just for listening or can drop packets?
thanks/
0
hello,
what is the best opensource firewall that can work with mikrotik for ips,ids,brute force, attack ?
also is there any free open source waf server ?
0
I am trying to take backup of my ASA through tftp.

Command: ASA01/Hyb(config)# write net 172.24.50.9:/Test-561.tmp

Response: Building configuration...

                      INFO: Default tftp-server not set, using highest security interface Cryptochecksum: ******************************** !

%Error writing tftp://172.24.50.9 //Test-561.tmp;int=inside (Timed out attempting to connect) [FAILED]

 Also after executing this command,  Test-561.tmp is created in TFTP directory but with size 0

TFTP server is installed in Linux, tftp is working fine as I am able to take backup of other ASA which is in the same network.
 

Your help will be appreciated.

Thanks,
Dilraj Kumar Paswan
0
We have cisco wireless controller 2500, there it will not support webfiltering. i just want to do web filtering for my office wifi.

so can i use any tool in dns server to block websites??

please suggest me some simple and open source tool

thanks
0

Software Firewalls

19K

Solutions

20K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.