Quote:
Originally Posted by Risco
What resources? Why disable it, when it causes no problems? He can have the windows firewall running as well giving double line of defence. The SHUB 2 is not as underpowered as you guys are making out.
SHUB 1 of course was a total disaster.
|
CPU cycles. Running a firewall behind a firewall can (and often does) cause problems. Two real life walls are a double line of defence, but two software firewalls isn't the same analogy and can actually cause more problems without adding security. To be honest anyone running a router (i.e. not modem-only mode) doesn't need a software firewall at all. Any router provides a hardware firewall because you're sat behind NAT, even with the additional software firewall turned off. You could plug into the SH2 (or any other router), disable its firewall, disable your own PC firewall, and you'd be safe.
Most people like to run both (hardware firewall and a software firewall) but the fact is it's redundancy. I run hardware NAT and my machines have iptables (Linux firewall), but it's not necessary. I agree with the above, disable the software firewall and free up cycles for DOCSIS and routing.
