Karl`s PC Help Forums

Firewall on my router
LSemmens - 4-1-2012 at 12:36

I have a Billion BiPAC 7401VGPR3 Router through which my entire network can communicate with you lot and the rest of the world. I have finally gotten to the stage whereby I should enable the hardware firewall and ditch ZA free and Windoze Firewall (Which has never been turned on BTW). I'm familiar enough with setting permissions for programs and IP addys in ZA, but I have zero experience with hardware firewalls.

What settings should I use, and what should I avoid? Why? TIA, you secure gurus.

LSemmens - 6-1-2012 at 11:59


Katzy - 6-1-2012 at 12:06

Not sure what settings you mean.

On mine, the actual firewall's either enabled or disabled.

I still use Comodo, too, though.

LSemmens - 6-1-2012 at 12:42


NAT natural firewall: This masks LAN users’ IP addresses which are invisible to users on the Internet, thus making it more difficult for a hacker to target a machine on your network. This natural firewall is turned on when NAT function is enabled.
Fairly basic here not too hard to understand


Firewall Security and Policy (General Settings): Inbound direction of Packet Filter rules to prevent unauthorized computers or applications to access your local network from the Internet.

Packet FilterThis function is only available when Firewall is enabled with one of the four security levels selected (All blocked, High, Medium and Low). The preset port filter rules in the Packet Filter must be modified accordingly to the level of security selected. See Table1: Predefined Port Filter for more detail information.

Packet Filter – Add TCP/UDP Filter
Packet Filter – Add Raw IP Filter
This is where I start getting lost. I understand the basics of opening and closing ports to allow, say bit torrent clients through the firewall but I get lost when it starts talking protocols, etc.


Intrusion Detection: Enable Intrusion Detection to detect, prevent and log malicious attacks.
goes without saying


Access Control: Prevent access from PCs on your local network:


Firewall Security and Policy (General Settings): Outbound direction of Packet Filter rules to prevent unauthorized computers or applications from accessing the Internet.
How do I set these, In Zone Alarm (I've used Comodo, too, NO! Not at the same time) all I need do is give a program permission to send/receive stuff from the internet or the trusted zone, can I set that level in HW or must I still use a software firewall too?


URL Filter: To block PCs on your local network from unwanted websites.
no kids so not an issue. I can block either url or domain. There is also the facility to block IM and P2P traffic.

As you can see, quite comprehensive (to a novice) but also, in places confusing.

Theravad - 6-1-2012 at 12:55

I would not ditch the firewall on your PC just because your router has a firewall. Enable both. Windows 7 built in firewall is good enough (at last) for most people. On XP use comodo or similar.

LSemmens - 6-1-2012 at 13:35

What about the packet filtering?

Katzy - 6-1-2012 at 14:17

Have a butcher's at this, matey.


That's a damned fine site, that.

And this:


LSemmens - 7-1-2012 at 05:48

That has given a good overview of the subject and has prompted me to spend most of today doing even more research. I think that I have got it sorted. Shields up at least gave me a pretty good report though I can't get onto GRC's site at the moment for some reason.

Katzy - 7-1-2012 at 11:03


LSemmens - 7-1-2012 at 13:01

Gibson Research Corporation the authors of "Sheilds Up"

Katzy - 7-1-2012 at 18:30

Ah, yeah!

Been a while since I've been there.

Seems that I'm well screwed down, except my FTP port being open.

LSemmens - 8-1-2012 at 12:19

How come you have FTP port open? Strangely enough I use uTorrent and had to forward port 18432 and Shields up didn't pick it! Gave this box a clean bill of health! I now must test the other computers on my network,

Katzy - 8-1-2012 at 13:46

I use FTP all the time.

I build webbies/forum sites and without FTP, that's not much fun.

LSemmens - 8-1-2012 at 14:11

Fairy Snuff! I'm just being nosey! Now I've got my file sharing sorted I'm a happy little Vegemite!

Katzy - 8-1-2012 at 18:39

Unwittingly, I think this was the "ad" that sold most Vegemite.


LSemmens - 9-1-2012 at 13:08

I suspect that you are quite correct. It was released a few years after my example, though.