A good Internet Security Suite will include at minimum the top three Internet security basics. Good Anti-Virus scanner, good Anti-Spyware software and last but not least a good software firewall.
There are two types of firewalls.
Hardware based firewalls- are firewalls that have embedded firmware (microchips) that are specifically designed for preventing unwanted connections that originate from outside of your network (Internet) from coming into your home (private) network. There are some types that prevent unauthorized outbound connections also however these are very expensive corporate enterprise firewalls.
Software Based Firewalls- These types of firewalls are the type that are typically included with an Internet security suite of products. These prevent unwanted inbound and outbound connections to and from your specific PC only.
You as the home user should take advantage of both of these technologies.
If you have a DSL router or a Cable modem. Chances are there is a hidden administration page that is embedded in your modem/router that can be accessed by entering your network gateway address into your web browser.
This is typically something like 192.168.1.1 if you enter this in your browsers address bar you will get an administration page. You can also find your gateway page by going to Start > Run > type “CMD” press enter > type “IPCONFIG” and you will see your gateway address.
From here you can turn on your hardware firewall which will block unwanted connections that originate from the outside (Internet) of your home (private) network. You may also have this technology on your wireless router which if you enable it here will give you a second layer of protection from the Internet (public) network.
However, this only blocks unwanted incoming connections. If you were to get a virus through email or visiting a webpage you do not want the malicious software calling home to the criminal before you detect and clean the malware. So this is why you need a software firewall.
A software firewall will alert you for every unknown connection that originates from your PC that is destined for the Internet. You must then choose whether to allow or not allow this connection to take place.
At first this will be a real nuisance, but once you have defined what is allowed and what is not allowed you will rarely be bothered by the software firewall unless of course something tries to connect that should not.
With the above being briefly explained let us go on to
The Top 5 Internet Firewall Security tips
1. Use a Hardware and Software based firewall when possible- If you have DSL or Cable Internet access this may be embedded in your router/modem and you do not realize it. This is also embedded in the routers which are purchased from the store for home networks. This is simply enabled by selecting a check box on most models.
2. Follow the principle of least privilege- if it is not something that you need do not allow it to go to the Internet. Once you have installed a software based firewall you will be surprised how much “junk” from your PC connects to the Internet. Beware however there are some programs that must connect to the Internet in order for you to browse the Internet. Do not disable programs that originate from Microsoft or your favorite browser when you first install a software firewall. First allow what is necessary then become more strict as you work with you new firewall enabled.
3. Update your firewall periodically - at least once per month check and see if there are new signature files and firewall engines for your software firewall. Also do a search for any holes or vulnerabilities for the firewall you are using. If there are updates apply them as soon as possible.
4. Do not use the excuse “I cannot afford a firewall” - there are several free firewalls available that are good firewalls which will help you secure your PC from malicious inbound and outbound attacks.
5. If you do not know then research it first- Do not get lazy and arbitrarily allow any program to access the Internet. If you do not know what a program is then search for the program name on the Internet or post a question in our discussion area and we will help you determine if it is or is not safe.