Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x

Software Firewalls

19K

Solutions

19K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

Are there any well-known repercussions related to disabling NetBIOS for my workstations. There is a lot of broadcast chatter I’d like to eliminate. Also, many of the workstation firewalls are blocking UDP 138 and 137. This blocking combined with the broadcasts results in security logs that are being written to four times a minute per workstation. Quite a lot of work for nothing possibly?

I disabled netBIOS on one workstation and I’m not seeing any issues yet. Is it OK to disable it networkwide?
0
Managing Security Policy in a Changing Environment
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

We have a cloud based firewall provided by our MPLS provider. They recently moved from Cisco to Fortinet. We are given access through a web dashboard.

I knew how to to this with the cisco but not the fortinet. I'm trying to create a rule/policy where i can group a few internal IP's together where they go out and use the same external static IP.
0
Hello,

Was just wondering, what logging you enable on your ASA? I ma not sure what to send to my logging server.


Thanks!
0
Does anyone know how I can stop LFD from sending Failure emails for trusted processes? Do I need to 'whitelist' certain processes in CSF?
Mine is sending an email every minute or so, resulting in tens of thousands of useless emails (& using server time of course)

THE EMAIL MESSAGE:
Subject:  
lfd on server.myservername.com: Suspicious process running under user postfix
Body:  
Time:    Fri Dec  8 07:56:26 2017 -0800
PID:     23757 (Parent PID:12511)
Account: postfix
Uptime:  104 seconds

Executable:
/usr/libexec/postfix/smtpd

Command Line (often faked in exploits):
smtpd -n 25 -t inet -u -o stress=

Network connections by the process (if any):
tcp: 0.0.0.0:25 -> 0.0.0.0:0

Files open by the process (if any):
/dev/null
/dev/null
/dev/null
/var/spool/postfix/pid/inet.25
anon_inode:[eventpoll]
/etc/aliases.db
/etc/aliases.db
/var/spool/postfix/plesk/aliases.db
/var/spool/postfix/plesk/aliases.db
/var/spool/postfix/plesk/virtual.db
/var/spool/postfix/plesk/virtual.db
/var/spool/postfix/plesk/vmailbox.db
/var/spool/postfix/plesk/vmailbox.db
/var/spool/postfix/plesk/blacklists.db
/var/spool/postfix/plesk/blacklists.db

Memory maps by the process (if any):
7f3a55962000-7f3a55971000 r-xp 00000000 103:01 11846418                  /usr/lib64/libbz2.so.1.0.6
7f3a55971000-7f3a55b70000 ---p 0000f000 103:01 11846418                  /usr/lib64/libbz2.so.1.0.6
7f3a55b70000-7f3a55b71000 r--p 0000e000 103:
etc etc etc
0
We have uninstalled a series of apps and 2 apps, Comodo and Sql2016 didn't uninstall completely.  We use iObit Uninstaller and clicked all apps that we wanted to uninstalled, including  the 2 that wasn't successful done.  

Sql2016 is no longer in the Add/Remove programs but services are still active (How do we remove or uninstall these SQL 2016 services?).

Also, when we try uninstall individually Comodo, we can't, we get this message:

failed uninstall
How do we remove or uninstall partial Comodo?)
0
Hi,
Having trouble with workstations running a new software program that uses a SQL DB on an SBS 2011 server (Medtech32 Medical Software.)
Disabling the Server's Firewall allows it to run on the workstations.  I've added the Firewall rules to the Server as stated by Medtech but it still doesn't connect.  Any ideas?
The ports as per their docs are:
TCP Port 3050  on internal LAN/WAN
UDP Port 300 on internal LAN/WAN

Thanks.
0
hi
is there is any built in voice recorder for mot 4g plus or any recommended apps for this
please advise
0
We have users that don't have static IPs and need them to gain access to some servers. They do have DDNS with nutpile so wondering if those dns names could be used instead of a source IP.
0
how to share big audio video files with others
any free urls or sites for that?
pplease advise
0
hi,

I like to see folder structure in Details view rather than Large Icon Default which according to me is useless.
how to make Details view as default in windows 10 laptop.
DetailsView.png
0
When ransomware hits your clients, what do you do?
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Dear experts, we are testing pfSense firewall but could not access it via LAN network on a PC. This is our diagram:
ISP ------------- pfSense ---------------- Core switch 3750 ---------- PC

with this diagram, we could ping and access pfSense via web browser :
ISP -------------- pfSense -------------- PC

So I guess something wrong with the core switch and vlan setup, but we could not find why. In switch 3750, the interface connected to pfSense has access mode, vlan 100 - the same with pfSense LAN interface.

Could you please suggest?
0
hi,

in moto 4g plus how to modify dial tone. please advise
0
hi,

i am using google photos nd flickr to back up my photos and videos.

how to sync up photos from google photos to flickr and flickr to google photos

how to sync up my andorid moto 4g plus to sync up my photos to both google photos and flickr when i click any picture automatically.
i do not want watsup pictures to sync though how to avoid that
please advise
0
In a firewall like Palo Alto Networks you can see what traffic has been allowed or denied by source ip, destination ip, protocol, actions etc. How can I see what's being dropped on a particular VPC?
0
hi,

moto4g plus watsup message noise is too much. how to mute them when i type a message and send.

how to mute when i receive a message. please advise
0
I am trouble-shooting client VPN connectivity from PAN "Global Protect". The client logs in but instantly logs out. I want to verify that this is not being caused by the windows firewall. How can I exculpate the windows firewall as not interfering with the Global Protect VPN connection process? TY
0
Dear Experts, we could not use remote Desktop service into a Win server 2008 R2, it said that "Your credential did not work"; some steps were performed but could not help:
1. Open all Firewall profiles, disable Antivirus
2. Changing password
3. Create a new local user and add to Remote Desktop Group
4. Change remote port
5. Restart RDP service
6. Allow remote desktop service

Any idea please?
0
I want to view all incoming connections to my laptop including the Failed ones!

I have setup this test scenario:
- configured FileZilla server to Listen to port 8888  on my laptop
- tried to connect to my laptop from remote using an FTP client using default port TCP 21  (which fails)

The question now, How can I view this failed attempt or connection on my laptop ?
something like viewing a LOG on a normal firewall (Perimeter or DC firewall) .

Thank you..
0
Hi,

I need to create two ports on a windows machine, they are 8752 & 8090 how do I do this? this is for testing.

regards,
kay
0
Free Tool: ZipGrep
LVL 11
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Hello Experts,

I would like to change my current (route outside 0.0.0.0 0.0.0.0 64.64.64.230 1) outgoing internet traffic through different interface  (route dsl1 0.0.0.0 0.0.0.0 192.168.254.254 2)


route outside 0.0.0.0 0.0.0.0 64.64.64.230 1
route dsl1 0.0.0.0 0.0.0.0 192.168.254.254 2
route dsl2 0.0.0.0 0.0.0.0 172.16.17.254 3

i Tried unplugging the outside interface hoping internet traffic would go out the other interfaces but it did not. so maybe  i am  overlooking something. I thought that since they have 1, 2, 3, after each route it is supposed to go out other interfaces if it fails on the first one.
Please note i can only use  SSH to make changes no ASDM
Please provide exact step by step solution. my PiX knowledge is very limited
Running Config Attached
Thank you
Running-Config-temp.txt
0
Hi Experts,

I am having a enormous amount of intrusion attempts on our cloud web and sql servers.  It's a different IP address all the time.  I am currently researching this further but not having much luck on how to close up the vunerability or stop it.

Any ideas how I can stop this?  My mailbox is flooded with these notifications and it's increasing.

We use Symantec Endpoint Security, A firewall, and the windows firewall

Thank you,

Karen
0
Hello dear community,
Ineed  to upgrade firewall checkpoint from 77.20 to 77.50
I would like feedback on this subject and if there are any script to automate this operation because I have a lot of firewall in different countries, and also how log time for interrupting service in upgrade
Thank you for advance
0
In the example below, I see that I am listening on port 8080 (www) and then I have the mapped port of 63. I have a questions about that 63. Can that be any number I make up? Or is this supposed to be structured in certain way? I am using ASA 9.4 and above. Also, if I am listening on port 8080 what do I need the 63 for?

(config#)Object network WEB-SERVER
(config-network-object)# host 172.10.150.100
(config-network-object)#nat (inside,outside) static 1.1.1.1 service tcp www 63

Open in new window

0
I am interested in installing Sophos XG firewall home edition on a PC. the following link has been given to me by Sophos as a link for the free download.

Link for Sophos XG firewall home Edition

I am somewhat nervous however as the site issues a warning to the effect that any existing operating system will be erased when installing the product. I understand this bit I am not sure what will happen if I click the Get Started button on the Sophos web site.
I would hope that an image file would be downloaded that I could burn to a CD/DVD and then use to install the product on a PC with no OS on it.
I wish to be assured that clicking on the Get Started button won't result in the XG firewall being installed on my PC and wiping out the my PC.
0
I've got a 5545x that I'm configuring for remote access VPN.  I've done a few 5506's but this is my first 5545.

I initially started with AnyConnect. I could get the client connected, but I couldn't get a ping response.  The client statistics showed control data was being exchanged.  Client data was being sent, but not received.

I wiped and reconfigured and got the exact same results.   Then I tried configuring IPSec for the legacy VPN Client because I can always get that to work. :-)

Exact same results.  Client connects fine but no data.  "show cry ipsec sa" shows pkts decap are increasing but pkts encaps are not.  

I figure that I'm just missing something and I've been looking at it for so long that I'm just not seeing it. Hoping someone can look at this and see a typo or a missing statement that I'm missing.

I've stripped out all the non-essentials and sanitized the output.  If I got overzealous with the stripping and cleaning, let me know and I'll repost.

Thanks.

Don

P.S.  I've added a bunch of... junk that I don't usually have while throwing things at this to see if something sticks.


ip local pool RA_VPN_POOL 192.168.255.1-192.168.255.62 mask 255.255.255.192
ip local pool AnyConnect_VPN_Pool 192.168.255.129-192.168.255.254 mask 255.255.255.192
!
object network VPN-Nets
 subnet 192.168.255.0 255.255.255.0
!
object-group network Inside-Networks
  network-object 10.10.0.0 255.255.0.0
 network-object 192.168.0.0 255.255.0.0
!

Open in new window

0

Software Firewalls

19K

Solutions

19K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.