what is a good router with a good firewall

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

zergpc208

Thread Starter
Joined
Jan 14, 2006
Messages
1,029
Well people keep saying to me get a good router with a good firewall .

Because I do not know really how firewalls work or much about routers I'm getting confused .When people say get good router with a good firewall.

Is this what I should be looking for in a good router .

good firewall is the router that will lock all traffic but the appropriate computers the admin sets up for the router only and no other computers can use that router and the use of logging .

Meaning if people are hacking my router ,unauthorized use of the router ( by not improved computer) or trying to log into the router by password guessing it will alert me.

My routers does not alert me or has that feature to alert me when there is unauthorized use of the router ( by not improved computer using the router ) or trying to log into the router settings by password guessing

And tell me if there is port scanning going on.
.

router that will lock all traffic but the appropriate computers the admin sets up for the router only and no other computers can use that router and the use of logging
 
Joined
Sep 21, 2007
Messages
13,661
Many routers today has a built in Stateful Packet Inspection ( SPI ) firewall.( eg DLink ) Basically, the firewall watches what ip addresses you go to, and allows only return traffic. So if you go to google.com, the firewall allows google.com to send network traffic back to you; anything else is blocked.

Having a log is good, so that you can review blocked network traffic and login attempts. However, you need to be deligent and review the logs regularly.

A fancier firewall + router will allow you to set firewall rules. So lets say you trust the DNS server provided by your ISP. You can make a rule saying Allow Outgoing traffic to UDP Port 53 at such and such an ip address. You can also allow only web traffic by saying Allow Outgoing traffic to TCP Port 80 and 443. Anything without a rule will not pass. So if a botnet client infects one of your machines and attempts to contact its master controller using IRC protocol, it will fail.

A small business oriented firewall like DLink's DFL210 also has a DMZ zone, where you can attach your public servers, like web servers. Because a web server is open to the public, it is also prone to attacks, and by making a seperate network zone for these machines, it separates your trusted internal network that does things like File and Printer Sharing from the untrusted, attack prone web servers. A SMB firewall would also have VPN support, so you can connect back to your network from a coffee shop. It will also support emailing alerts, so you won't have to wade thru mountains of log entries to find useful info.
 

zergpc208

Thread Starter
Joined
Jan 14, 2006
Messages
1,029
Having a log is good, so that you can review blocked network traffic and login attempts. However, you need to be deligent and review the logs regularly.
You mean by login attempts people who try to log into the router settings by password guessing or trying to hack the router?
 

DoubleHelix

Banned
Joined
Dec 9, 2004
Messages
24,388
No consumer router does what you're asking. If you want detailed alerts and logging, you'd have to look into high-end professional routers that cost hundreds or thousands of dollars.

It's unnecessary.
 
Joined
Sep 21, 2007
Messages
13,661
Hi zergprc208,

Yes the logs should show login failures and their dates.

As for prices, the DFL 210 I mentioned costs around $300.
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Members online

Top