Software Firewalls

19K

Solutions

20K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi, i'm looking for an easy way to shut off Windows Defender, Defender notifications and Windows Firewall until I tell it to turn back on.    A program would be nice, but command lines would be fine also.  I can get them off, but they just keep turning back on.  

Thanks all.
0
Live Q & A: Securing Your Wi-Fi for Summer Travel
LVL 1
Live Q & A: Securing Your Wi-Fi for Summer Travel

Traveling this summer? Join us on June 18, 2018 for a live stream to learn about the importance of Wi-Fi security and 3 easy measures you can start taking immediately to protect your private data while using public Wi-Fi. Follow us today to learn more!

I couldn’t upgrade my firmware on the Cisco rv325 router that's attached to  my Server 2016 essentials environment.  I signed on to ServerWSE and used Chrome to 192.168.16.1. I started the upgrade, and the progress bar kept spinning for 30 minutes, then went away.  But the router still had the old firmware.

I called Cisco and their Engineer said it failed because I must first turn off the windows firewall which should be done on a client computer, not the main server.

We then spent 40 minutes trying to turn ofr the firewall on my Windows 10 Pro laptop.

The problem is that the firewall settings says “for your security some settings are controlled by group policy”.

I am our small business's tech guy, but I know very little about GPO, and the Cisco Engineer knew less.  We turned off laptop's antivirus, and signed on as cpulaptop\Administrator but that did not help.

Does anybody know a simple way to temporarily turn off the firewall?  

If so please let me know.  

If there is not a simple way, perhaps someone can help me with GPO.  I already did the following research, but I am not making much progress.

Link#1: I found this article which show me how to create a domain level policy that turns off firewall for everybody. https://prajwaldesai.com/how-to-turn-off-windows-defender-using-group-policy/

But that is way overkill. I want to turn it off only for cpuLaptop.  Ideally, it would only be off when signon as cpuLaptop\Administrator.

Link#2: I then …
0
Hello everyone!. Perhaps somebody could help me. I am trying to configure firewallD (Centos 7) so public network only has access to http and https services but my trusted networks to ssh, webmin, http, https, etc...
Btw I have only 1 interface.

I need to achieve something like this:

PUBLIC ZONE:
-source: 0.0.0.0
-interface: eth0
-allowed services: http, https

TRUSTED ZONE:
-source: 192.168.10.0/24
-interface: eth0
-allowed services: http, https, ssh
-allowed ports: 10000

Ho can I do it?
0
Dear Experts,

I'm using server 2012 r2.

A strange issue (at least to me its strange)  -

Some of  the domain attched clients are being blocked by the firewall, when I turn off the firewall the problem disappears ..

From the firewall log -

2018-05-12 11:35:31 DROP UDP 192.168.1.3 192.168.1.111 55667 53 60 - - - - - - - RECEIVE
2018-05-12 11:35:31 DROP UDP 192.168.1.3 192.168.1.255 137 137 78 - - - - - - - RECEIVE
2018-05-12 11:35:32 DROP UDP 192.168.1.7 192.168.1.111 51933 53 62 - - - - - - - RECEIVE
2018-05-12 11:35:32 DROP UDP 192.168.1.3 192.168.1.111 55667 53 60 - - - - - - - RECEIVE
2018-05-12 11:35:32 DROP UDP 192.168.1.3 192.168.1.255 137 137 78 - - - - - - - RECEIVE

Incoming connections to 53 (dns) and 137 (network discovery) are dropped ..

Port 53 is in the server firewall to allow any , it has 'block edge traversal' set on.

Any ideas ?

Thanks.
0
We are contemplating whether to use McAfee endpoint security's firewall or Windows firewalls
on our 30+ branches : the branches have some crucial Desktops running database services:
though the branches (ie spoke) connect back to our DC (ie hub), potentially some branches
may have their own broadband (or even just via 4G).

It's a debate between our Windows Desktop & our Firewall admins which one to use.

I know in previous Deep Security, I will have to create numerous 'policies' : one for each
branch though the branches have the same desktops running database services listening
on the same ports and when I upgrade the agents centrally from the EPO, had run into
issues:  modules (eg: Firewall or File Integrity Monitoring) that are not enabled previously
(say for servers), got auto-enabled.

So not sure if McAfee Firewall has similar or any other issues: kindly elaborate
0
Hi Guys

I am looking for the experts in the security field that could help me with this one.
What would be the pros and cons when it comes to open source firewalls and commercial firewalls?

IE support / costs etc.

What would be the best to use, that would be compatible with Azure VPN Route base and policy based routing for site to site / remote branch connectivity?
0
Hello Experts
i'm trying to set up WCCP between a Cisco 6500 router  and Bluecoat ASG-S200

This is the WCCP configuration on 6500 side :


access-list 150 permit tcp any any eq www
access-list 150 permit tcp any any eq 443

ip wccp web-cache
ip wccp 90 redirect list 150

int vlan 100
description << Client VLAN >>
ip wccp 150 redirect in

Open in new window



[b]sh ip wccp 90 detail [/b]
        No information is available for the service

Open in new window



Debugging on Cisco 6500

8385566: 20w4d: WCCP-EVNT:D150: Here_I_Am packet from 10.1.150.2: service not active

Open in new window


Thanking in advance
0
Been trying to access a 2012 server thru remote desktop but not getting in so wanted to disable the firewall remotely.  Tried to also push vnc install onto server but keeps timing out.
0
Why are there no books of videos on Palo Alto Networks firewalls to be found on O'Reilly - Safari?
There are tons of books on Cisco, Juniper, Citrix. But nothing at all on PAN. Is PAN just very restrictive
about who can write about their products? PAN isn't brand new any more. Anyone have insight?
0
attempts are being made to access a DC.  See attached.  How can I determine where these attempts came from?

security
0
WEBINAR: 10 Easy Ways to Lose a Password
LVL 1
WEBINAR: 10 Easy Ways to Lose a Password

Join us on June 27th at 8 am PDT to learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees. We'll cover the importance of multi-factor authentication and how these solutions can better protect your business!

Centos 7 running firewalld.

How do I convert this;

iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE

to a command for firewalld to understand.
0
Hello I’m looking to putting in my first firewall. I’m looking for a good option for a municipality. If someone could help me out with this it would be great like I said this is my first and I don’t have any experience in it at all! Thanks.
0
i have entities like below

&#225;
&#353;
&#237;


how to find corresponding  foreign special character.

Please advise
0
Hello Experts,

I had a basic requirement of having a AD to authenticate users, block a few websites (whatsapp,Facebook and Youtube). The sites had to be available only for HR and Management teams and were to be blocked for everyone else.
This was outsourced to a thirdparty vendor to get this up and running in about 5 days.

However the vendor informed me that the requested setup is complete in about 5 hours.
What he has done are the following
** ubuntu server installed serving as a DC and AD authentication server.
** pfSense firewall installed but this is currently down due to the OS blowing away after power failure.
** certificate that was generated to ensure internet only works when the certificate is installed.

Now the issue is with the websites blocked. All users are currently being blocked from using these sites. Facebook, WhatsApp and other Social media like twitter are a requirement for HR and Management operations.

The setup is incomplete and the vendor is absconding after payment.
Since I am knowledgeable about Linux OS and familiar with CLI, I need to make sure the required setup is up and running.

Kindly point me to the right KBs or Update me on the steps that I need to take to ensure this is completed.
0
Hi expertsAWS opened ports for reference,

   My web application is running on aws ubuntu 16.  I have the following ports open from aws.  
It has the following applications running on ubuntu

uwsgi with nginx -  i  Think it uses port 80
node.js with react - react is rendering on port 9009
webpack with webpack.config.js - which creates js file which will be using port 80
npm run django: runserver 0.0.0.0:8000  uses port 8000
elastic search :9200 uses port 9200
postgresql used port:5432

Please see the opened ports on aws.  screenshot for reference.

With putty I connect to linux ubuntu machine with the following ip address 54.252.92.17

There is docker application which runs inside that linux box uses nginx, postgres, elasticsearch

When I run docker application, and I able to see from browser with http://54.252.92.17/

Where as when I run python manage.py runserver 0.0.0.0:8000 I am not able to see the application.

The site can't be reached 54.252.92.17 refused to connect error.

Whereas I can see the docker application when the docker is run.

Please help me why the python application is not running on the browser, where as Docker application runs well.

With python manage.py runserver 0,0,0,0:8000 I am running from the source code.  Whereas with docker I am running the docker image.

Both are same application.  

Please help me in fixing this issue.

with many thanks,
Bharath AK
0
Need help determining the OUTBOUND Windows firewall rule(s) necessary to allow the following command to be run FROM a Win2016 server. The issue goes away if the Windows firewall is set to "Allow" all OUTBOUND connections.

Get-WmiObject -ComputerName $RemoteComputer -namespace "ROOT\Cimv2" -Class Win32_ComputerSystem

Open in new window


When the outbound firewall is enabled, the result of this command is a "No such interface supported" error, and the firewall log shows "DROP TCP x.x.x.x y.y.y.y 50011 49154 0 - 0 0 0 - - - SEND". The "Windows Management Instrumentation (WMI-Out)" is enabled with it's default settings and being respected, as it's visible in the "Monitoring" rules. I've also pretty much tried all available predefined outbound rules with no success.
0
Hello
Currently we have TMG as web proxy and websense as web filtering
We are going to replace TMG with Bluecoat SG Appliance.

Hence I need to know which design is considered as best in terms of secure and efficiency.

We have 1500 users.

Any help would be appreciated.
0
Hi I wish to use the SDM or ASDM or CCP software & have been looking at the following 2841 cisco routers as they should be compatible.

I wish to know which one would be the best to purchase ?
0
I have been doing some research into setting up redundant ISPs on the PANs (Palo Alto firewalls), and it seems that if we don't want to run BGP for that site, the best alternative seems to be PBF.  Am I on the right track with that?  Are there other alternatives?
0
Cloud Class® Course: C++ 11 Fundamentals
LVL 12
Cloud Class® Course: C++ 11 Fundamentals

This course will introduce you to C++ 11 and teach you about syntax fundamentals.

Hi Everyone

What is the best practice for gateways. For example we got blacklisted a while ago and public ip is still blacklisted on spam rats. It says about reverse lookup not being setup

the exact message "Does IP Address comply with reverse hostname naming convention". While letting my isp know we were told to liase directly with spamrats which i did but the ip has not been given ok by spamrats. I think that they want us to set reverse DNS on gateway.

1) What is the best practice for gateways?
2) What happens if i give it a name with my domain? nnn.kkk.school.fj.
3) Does it interrupt my traffic?
4) Do i have to change my firewall rules based on the name change?
5) What all do i have to do to get this done?
6) What is the whole purpose of reverse dns on gateway as i was told by my ISP that they only setup if told by a customer to do so?
0
For PAN FW's OS upgrades in HA active/passive mode.  Can anyone point to the process steps?
Does it required to suspend HA first or doing passive first then failover to the active node?  
Please advice or point to the right link.  Planning to upgrade to the latest 8.0.8 release for PA-850 models.
0
Looking for the security of a Web Application Firewall, with the least amount of work.

I have been told I needed a Web Application Firewall (WAF) and wonder if it's smarter to use a Web Cloud based WAF? It's for a .NET MVC App. running on IIS.

It sounds like it's a smart way to get security, without first needing to become an expert in it. And to know they are always on the lookout, making their system more secure, would let me rest easier.

Any good names you can recommend?

Also, how difficult is it to "build our own?" What kinds of customization capabilities would we lose, if we went with a Cloud based version?

How long might it take to deploy a cloud version of the WAF?

If I wanted to use AWS, for example, must I also host my website with AWS?

Thanks
0
We have Watchguard m400. The firewall is blocking EXE download. I want to allow only help desk to be able to download EXE, drive etc. How can i do this ?

thanks
0
My OS is win10 pro 64 bit.  Due to recent security hacking on my pc, I am thinking if NordVPN would provide the security preventing everyone from entry.  I have Avast Premier protection.  Or can I use ZoneAlarm or some other software.  Thank u and regards.
0
Are there any well-known repercussions related to disabling NetBIOS for my workstations. There is a lot of broadcast chatter I’d like to eliminate. Also, many of the workstation firewalls are blocking UDP 138 and 137. This blocking combined with the broadcasts results in security logs that are being written to four times a minute per workstation. Quite a lot of work for nothing possibly?

I disabled netBIOS on one workstation and I’m not seeing any issues yet. Is it OK to disable it networkwide?
0

Software Firewalls

19K

Solutions

20K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Top Experts In
Software Firewalls
<
Monthly
>