Print

Welcome to Smokey's Security Forums.

Guests have only limited access to the board and it's features, please consider registering to gain full access!

Registration is free and it only takes a few moments to complete.

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Wat0114]

Is my PC protected by Jetico FW against attacks via internet EVEN if I´ve got Allow all policy running?

Taken from the user guide for Jetico 2:

Allow all turns firewall protection off. Use it to resolve possible conflicts with Jetico Personal Firewall.

which likely holds true for J1, so short answer is...No!

However, if you are behind a router or even NAT modem, then you do have some protection against inbound attack attempts, but the level of protection depends on other factors such as level of stateful packet inspection (SPI), if any, and perhaps deep packet inspection (DPI), if any.

PS: I switched off the firewall and did some firewall security testing and these tests showed that i am secure even without firewall. Isn´t it weird? Maybe Avira Antivir installed on my pc protects me...

So you could be behind a router/NAT modem, or you may have left Windows firewall enabled. If you are getting "stealthed" results, then you are protected against scans t oyour machine.

I must say that I´ve got no problems with Jetico or internet connection, the reason why I´m asking is that I´d like to get rid of popup windows with options (allow/block...) when installing new program etc. because I´m often forced to decide if to allow or block operations which I don´t know anything about... On the other hand, this is the feature why is Jetico so good, isn´t it?

Jetico is an excellent firewall for this reason and others, but it helps to have a decent understanding of basic networking concepts to configure Jetico correctly. If you have patience and the willingness to learn, then it may be a good firewall solution for you, otherwise you will encounter grief.

[jonlew]

Thanks for your response, mets,

but I´m looking for an answer to this question:
Is my PC protected by Jetico FW against attacks via internet EVEN if I´ve got Allow all policy running?

I must say that I´ve got no problems with Jetico or internet connection, the reason why I´m asking is that I´d like to get rid of popup windows with options (allow/block...) when installing new program etc. because I´m often forced to decide if to allow or block operations which I don´t know anything about... On the other hand, this is the feature why is Jetico so good, isn´t it?

Thank you for your help
Jonlew

[mets]

Allow all, will allow all regardless.

This, IMHO, is mainly for testing possible problems. Example would be if you are unable to connect to internet with "optimal", if you can connect when you change to allow all, then it is a problem with your ruleset, if you still cannot connect, then it will show other possible problems, (such as driver conflicts or conflicts with other running process etc)

[jonlew]

Hello,
I used to be protected by various firewalls in the past. They were switched on, protecting me and none of them asked me what to do in certain situations. Now I´m using Jetico and am absolutly satisfied. The only thing I´m confused about is the Jetico firewall policy - Allow all...

Does it mean:
- it allows all ongoing and outgoing traffic no matter if it is dangerous (trojans, hacker attacks etc.) or
- it allows all ongoing and outgoing traffic but it prevents from hacker attacks and trojans etc.?

In other words, does Allow all mean the same as (e.g.) Disable firewall (one of Agnitum Outpost policy)?

Many thanks for answer,

Jonlew

PS: I switched off the firewall and did some firewall security testing and these tests showed that i am secure even without firewall. Isn´t it weird? Maybe Avira Antivir installed on my pc protects me...