Vista Firewalls

Outpost [ Out soon ]

Look N Stop
Jetico

-----------------------------------------------------------------------

I know this is a topic many new vista users will be interested in, so although I wont be tricked into installing vista, it would be good if anyone out there who uses vista and has a working firewall besides the windows firewall to let us know what it is, or if you know of any firewall that is vista compatible. Leave a comment here.

For those that don't know, currently there are no IP blockers that support vista and until there is an Outpost version for Vista there are probably no decent firewalls either, maybe just Zonealarm and Norton etc.. I have no idea, not even interested in looking at vista stuff, but I think it's something people will need to be aware of.

Vista uses IPv6 protocol by default, we have no plans for an IPv6 list at this time and there have been many Baytsp IPv6 ranges for quite awhile, probably lots of other ranges that need blocking as well.


Also check this post:
http://www.bluetack.co.uk/forums/index.php?showtopic=16458]

Firstaid might post something here about how effective the [ lack of ] protection is for p2p users running vista.



/ edit haha, ok now I am a vista user too

I have a question - Even if protowall is not compatible with IPv6, wouldn't it still be able to block IPv4 in a Vista environment? If I'm not sure how the guts of protowall work because I'm not a programmer, but I tried installing protowall on a vista computer, and it worked (for the most part).

I say for the most part, because there were no logs to video. I could tell it was blocking though, after testing some sites I knew to be in the blacklists I loaded. That was the only thing I noticed different - protowall wasn't reporting any blocked ips OR allowances. Hasn't anyone tried this besides me? I find it hard to believe I'm the only one! The computer I put protowall on is actually a co-workers computer, and he hasn't reported any problems (bsod or otherwise) to me since installation.

Does this mean protowall is compatible but just not quite 100% yet? The protowall faq states that protowall blocks the ipv6 protocol. Or did I misunderstand that?

http://www.bluetack.co.uk/forums/index.php...E=02&qid=31

Sorry to bring up this topic here, but if protowall can work in vista with a little tweaking, I thought you guys should know.

I installed protowall in vista aftet a big hastle but I could not get it to block, when i tested it did not block nor do I think it will block without ndi6 support. Protowall runs on ndi5 and in theory will not block in vista. Even if protowall did block ipv6, where are the lists of ipv6 to be blocked, there is none.

If you think installing protowall in xp was hard, lol, you should see what it takes to install it in vista. Uac is a must to turn off, it will drive you nuts with protowall as you cannot tell it to trust protowall one time and thats it, it keeps coming up on boot to ask you if you trust it again and you have to go through that shit every time. You have to install it with compatbility mode and it is just a pain to install.

I do find it interesting that you found it to block as I did many tests and it did not.

I find vista firewalls an oxymoron at this point, dunno if that will ever change. You are prolly gonna be better off setting up a linux box in front of your vista box and using moblock in front of it. Get yourself a kvm 2 port switch from wallmart so you can run both boxes from one monitor and keyboard (switch between vista and ubuntu by hitting the scroll lock key 2 times). Throw ubuntu on the box, disable ipv6 and run a firewall on it or just use moblock and run it to your vista box through another ethernet card. Use Tinyblm along with moblock so you have more control over what lists you want to use and it will be easier to make inclusions and exclusions lists.

firstaid

I find it interesting that I got it working too, when everyone else is having problems. I keep thinking maybe I did something wrong, but I couldn't have, because all I did was install it.

One thing that is plausible though - I don't know what other versions of vista you and others have tried; I installed it on the release candidate that expires in May. If you are using another version, it's entirely possible that m$ could have tweaked something in the kernel before the final release that is causing those problems. If that is the case, then that's a shame.

I ran protowall on vista with ipv6 enabled and it worked... When I can test it using only ipv4 I'll do another post to report how it behaved.

If ipv6 is completely disabled, will that prevent any ipv6 ips from being able to connect to you? If so then that would be the best protection..

Okay I turned ipv6 off and did a restart.
Protowall is still working just as before.

How about WRQ ATGuard... I have a version that has been modified to run under XP. It can be downloaded from the Atguard Users Groups... I'll have to search the addresses.

Regarding the IPv6 problem, I never thought it was gonna be a problem. Cos I deal with networks that connect to both the internet as well as to a LAN, I thought if I always installed ALL protocols, it would allow my networked programs to run.

Well, I know NOW, that all I need is IPX/SPX and/or NetBeui or any other NetBios driver- The program I install specifically requires it... Apparently any program that runs an app across a network needs it?

But regarding IPv6... I have removed it from all my computers. And magically, my workstations have stopped dropping OFF the LAN and the WAN.

Especially in cases where ONE of my systems had IPv6 on it... I noticed that if I initiated a transfer, it would cause both workstations to drop, and block up my router.

So, it is away with IPv6... And I have not had any serious problems... Yet.

Do you agree with this as a solution even a temporary one? Or is there a better way to do it?

So what is everyone else using for a firewall in vista then ?

Just the standard m$ firewall, router or nothing at all or what ?

Yes I would say disabling IPv6 completely would be the best option for now.

Outpost supports vista now:
http://www.agnitum.com/products/outpost/download.php

I just recently bought a new gateway laptop after spending 8 years with my gateway desktop. My desktop is currently running XP Pro sp3 and is running great as always. Altough I love my new laptop I have to admit the Vista on this thing is a piece of crap. It has Vista premium 64 talk about junk. Needless to say I don't log on to peer2peer networks, and refuse to until I get some stuff working. I don't have time to do the endless research for working arond this problem so for now I will have to rely on my good old aging desktop to do all the work like it has been for the past 8 years its a bummer I know.


To answer your question I use my router as my firewall took allot of the security features from windows off it just so annoying. I get the feeling that there is no end in site to this delima I'll keep my fingers crossed.