Is anyone using it?

I'm looking for honest opinions on this <a href="http://www.kerio.com/us/kpf_home.html" target="_blank">free firewall</a>.

30 day trial only. Bah. I'd DL it and try but I'm behind a NAT and have yet to see a single attack come through. Sorry.

Zone alarm looks like it does the same thing so I'd say stick with that.

i did download it, but can't get it to run...so i don't know...am reading about outpost firewall from <a href="http://www.agnitum.com....seems" target="_blank">www.agnitum.com</a>
out post looks nice...

Thanks for the opinions guys.

I think I'll take a gander at Outpost as well, just because I want to experiment with something different. <img border="0" title="" alt="[Wink]" src="wink.gif" />

BTW, ILTU, doesn't the 30-day eval apply only to professional/commercial users? I recall seeing a mention that it was free for home/personal use?

How did you go with that firewall software..
I've been playing with a firends copy of ZoneAlarm Pro, If you not carefull with that gear it completely breaks any access to the network and vice versa..

Kerio free firewall is good stuff. I used Tiny
Personal then they were purchased by Kerio. Kerio
has done a great job since and had about three
upgrades which all worked well. I use it for
clients also. Just ran an internet test flawlessly
at pcflank.com which checks about everything you
can check. Kerio wins!

Im testing them all - :D

Sygate never using that crap again :(
Zonealarm - pain in the a$$ to set up
Norton - hogs my resources

I'm fooling around with Outpost right now, but it's a tad more complex to set up that I expected (as in, I'll have to read the manual to figure it out :p ).

MaddMaxx's comments have got me intrigued now.

I'd sworn off Tiny because it ad caused me to re-install Windows - twice - before I figured out it was the culprit killing my TCP/IP stack.

It may be worth a closer look today then.

I just removed Outpost from 4 of our systems. Been trying it for nearly 30 days.

I liked the interface - more professional than ZA Pro

Program kept crashing though - all four machines different conditions etc. So I decided against buying it.

I am about to evaluate <a href="http://soho.sygate.com/products/pspf_ov.htm" target="_blank">Sygate Personal Firewall Pro</a>

edit: just read Garak's post. What were some of the problems you encountered with Sygate?

</font><blockquote><font size="1" face="Trebuchet MS, Verdana, Arial, Helvetica, sans-serif">quote:</font><hr /><font size="2" face="Trebuchet MS, Verdana, Arial, Helvetica, sans-serif">Originally posted by Poseidon:
<strong>
I am about to evaluate <a href="http://soho.sygate.com/products/pspf_ov.htm" target="_blank">Sygate Personal Firewall Pro</a>

edit: just read Garak's post. What were some of the problems you encountered with Sygate?</strong></font><hr /></blockquote><font size="2" face="Trebuchet MS, Verdana, Arial, Helvetica, sans-serif">It doesn't work - i went to a relatives and "hit" my pc - got through everytime.. :mad: but that was using Default settings - supposed to block and open ports that applications wherent using... maybe you will have better luck, I don't have much luck with firewalls,

I got rid of ZAP, didn't like it much.
I'm trialling kerio now.. seems ok, I wish they would give a little more info on requests though...

I'm running it on my home server, win2k server using ICS with a adsl link, works fine for me so far..
Adept/others how has you Kerio experiance been?

I came across <a href="http://www.sygate.com/alerts/Outbound-Blocking.htm" target="_blank">an article</a> at Sygate's web site, describing a security vulnerability (which Sygate's Personal Firewall Pro v5.0 apparently fixes) whereby "malicious programs can use trusted applications or their own TCP/IP stack to evade personal firewalls." After reading this, I went to Agnitum's site to see if this problem had been addressed in Outpost, which led me to <a href="http://www.agnitum.com/forum/showthread.php?s=4021287ca6337b1e05b2c641134ffe23&threadid=4020&highlight=outbound" target="_blank">a thread</a> on their site in which one user reported the results of a <a href="http://www.pcflank.com/art21.htm" target="_blank">five part "leak test"</a> conducted by <a href="http://www.pcflank.com" target="_blank">PC Flank</a>, in which Outpost was only able to pass two out of five leak tests.

Only one firewall called <a href="http://www.soft4ever.com/" target="_blank">Look 'n' Stop</a> (which I cannot recall hearing about until I saw this test), was able to pass all five leak tests used by PC Flank, which was followed by Sygate Pro 5.0 and Zone Alarm Pro 3.0.091 which were able to pass four out of five leak tests.

---------------

...Jews ask for signs, Greeks seek after wisdom, but we preach Christ [the Word of God that was made flesh (AKA the Son of God)] crucified; a stumbling block to Jews, and foolishness to Greeks, but to those who are called, both Jews and Greeks, Christ is the power of God and the wisdom of God. (The Holy Bible, the book of 1st Corinthians, chapter 1, verses 22-23, <a href="http://ebible.org" target="_blank">WEB translation</a>)

I finally got around to installing Kerio last night.

First impression: Very nice.

I like the interface and relative user-friendliness. I had been looking for something that could give me control similar to Checkpoint's Firewall1 and I think this is it.

GRC.com gives my system covered by Kerio Firewall a full "stealth" rating. No services/ports accessible.

Leaktest also failed to connect out to the Internet.

So far, so good.

Edit: PCFlank Tests

Quick Test
Reported only port 80 open (as I have it set up) and lack of complete browser privacy (using IE6, go figure. :rolleyes: )

Stealth Test
Packet' type Status
======== =======
TCP "ping" stealthed
TCP NULL stealthed
TCP FIN stealthed
TCP XMAS stealthed
UDP stealthed

Recommendation:

Your computer is invisible to the others on the Internet!

Browser Test
Cookies and referrer tests failed (with IE6? never! :rolleyes: )

TrojansTest
Trojan: Port Status
===== ===== ========
GiFt 123 stealthed
Infector 146 stealthed
RTB666 623 stealthed
Net-Devil 901 stealthed
Net-Devil 902 stealthed
Net-Devil 903 stealthed
Subseven 1243 stealthed
Duddies Trojan 1560 stealthed
Duddies Trojan 2001 stealthed
Duddies Trojan 2002 stealthed
Theef 2800 stealthed
Theef 3000 stealthed
Theef 3700 stealthed
Optix 5151 stealthed
Subseven 6776 stealthed
Theef 7000 stealthed
Phoenix II 7410 stealthed
Ghost 9696 stealthed
GiFt 10100 stealthed
Host Control 10528 stealthed
Host Control 11051 stealthed
NetBus 12345 stealthed
NetBus 12346 stealthed
BioNet 12348 stealthed
BioNet 12349 stealthed
Host Control 15094 stealthed
Infector 17569 stealthed
NetBus 20034 stealthed
MoonPie 25685 stealthed
MoonPie 25686 stealthed
Subseven 27374 stealthed
BO 31337 stealthed
Infector 34763 stealthed
Infector 35000 stealthed

Advanced Port Scan - Standard (typical)
Port 80 open

Advanced Port Scan - Syn (typical)
Port 80 open

Exploits Test (all)
Passed


Not too bad.
:)

it looks like kerio is down right now....i'll try to get it later to play with....reinstalled my os and have nothing running right now...worth a shot...

I thought it was just me! :rolleyes:

Originally posted by a d e p t
BTW, ILTU, doesn't the 30-day eval apply only to professional/commercial users? I recall seeing a mention that it was free for home/personal use?

'tis free to personal users....

I think I started this in another post but I still Like!

I've set up ICS on my main WinXP box and a Win2000 laptop now connects to my ADSL connection.

After about 3 minutes of looking around, I was able to properly filter this "LAN" connection through the Kerio Firewall.

I keep.

After updating my Palm Desktop software, Kerio asked for a confirmation that this "new" version be authorized to reach the outside world.

Very interesting feature. :cool:

on adepts update's and praise for this firewall, i too installed it. Works like a champ...can't complain, it's nice to see who is on my machine and what progies are accesing the inet...


:thumbs: :thumbs:

I started off using Zone Alarm. It was very user-friendly, but seems almost cartoonish (kinda like the new XP style I guess).

I then found Tiny PF. Looked to be almost the exact same thing, only more professional looking (plain).

The team that developed Tiny left the company and started Kerio. KPF is basically the next version of TPF2. TPF3 is essentially a new untested product.

If you understand the concept of IP addresses and ports, you should have no problem working ZA, TPF2, or KPF. Just set it to "Ask" mode, and run your usual stuff. The only issue I had was the little "Ask" box popping up on the desktop when I tried to start an online 3D game. I'd usually have to C-A-D the game to answer the question. After that the rule was in the database already, so it worked fine afterwards. You can easily set up rules to allow a program to connect on one port, but deny another. Hint: ICQ doesn't need to connect to port 80 except to download banners. =)

If you're having trouble downloading it, check http://www.filemirrors.com/search.src?type=begins&file=kpf2-win.exe for other mirrors.

http://www.hackbusters.net/ob.html describes the "non-standard TCP/IP stack" vulnerability. Basically the old firewalls only saw traffic on MS' default stack.

Regarding the popup after upgrading a program: That was another big vulnerability in older firewalls. Their access databases stored only the filename of the program. Anything named iexplore.exe or netscape.exe (or the filename of some other trusted program) would have the same access privileges. Now they use a checksum to actually verify that the file is the right one, i.e. iexplore.exe is really IE instead of some virus named iexplore.exe.

http://www.sygatetech.com/

This has to be one of the best sites for probing a fire wall. Norton has a test but I don't think it will probe as deep as this one will. Sygates own free firewall doesn't pass this test. Norton so far is the only one that I have used that passes 99% or 100% of the time. This site constantly updates the attacks.... So come here and scan your firewall monthly!!!

Let me know what firewalls work best free or not free...

heh - that time again already (bordem - thus the need to cause myself havoc, testing time again :D)

Originally posted by Sp0cK
....Let me know what firewalls work best free or not free...

Well since I have Kerio & have been reccommending it, I'll say this works 100%, now if I charge you some money for it so it ain't free will that make you feel better.....?

Like I said all these cheapo/free firewalls are merely cutdown versions of much more expensive ones minus the element of 'insurance' (you can't sue these guys ... but you can someone who charged you a big fat fee!). We are all busy being beta testers....

Originally posted by Sp0cK
http://www.sygatetech.com/

This has to be one of the best sites for probing a fire wall. Norton has a test but I don't think it will probe as deep as this one will. Sygates own free firewall doesn't pass this test. Norton so far is the only one that I have used that passes 99% or 100% of the time. This site constantly updates the attacks.... So come here and scan your firewall monthly!!!

Let me know what firewalls work best free or not free...

What a coincidence!

Sygate's firewall scores the best on Sygate's probes!? :eek2:

I'm very satisfied with Kerio so far and I highly recommend it.

A D E P T
:eek2:
I don't know what version of Sygate you tested with their probes but I tested the free version they give out and it failed their test. The full version may pass all the tests... I currently use Norton's Firewall and it passed every test sygate had. It failed a few times because Sygate constantly adds new attacks to it but after an update it was back on top.

It would be great if people would post the results of the test on here so we can narrow down what fire wall to use.

Originally posted by Sp0cK
....I don't know what version of Sygate you tested with their probes but I tested the free version they give out and it failed their test....

Do you mean Kerio failed it... if so how? :confused:

Originally posted by Sp0cK
A D E P T
:eek2:
I don't know what version of Sygate you tested with their probes but I tested the free version they give out and it failed their test. The full version may pass all the tests... I currently use Norton's Firewall and it passed every test sygate had. It failed a few times because Sygate constantly adds new attacks to it but after an update it was back on top.

It would be great if people would post the results of the test on here so we can narrow down what fire wall to use.

No offense meant Spock.

I just wanted to underscore the fact that the Sygate product was testing well on Sygate's probe. IMHO, that invalidates this test for that product.

I haven't had time to test out all the modules of the Sygate tests, but I've tested Kerio Personal Firewall (see previous pages in this thread) enough to know that it's my personal choice right now.

No offense taken... :flame:



:grin:

I installed the Kerio Firewall on my own, and a neighbours computer, a few weeks ago, and we have had no trouble with it. I have just carried out all the tests on the grc.com site, and I am pleased to say Kerio came through with flying colours.

Nice to see Kerio is providing a manual. Tiny never did that - they just provided a link to discussion groups of users.

Me needs to learn how to configure this bleeding thing..

me did it :) says I'm secure :):rolleyes:

Well, I am now using a software called Smoothwall ( http://www.smoothwall.org ) Set up a little P90 with 32meg ram and a 540meg HDD and away it went, brilliant and easily configured...

Just got to test the thing now..