Firewall software is another way to protect computer. This article will compare some of the top firewalls.

What is a Firewall?
A firewall is an information technology (IT) security device which is configured to permit, deny or proxy data connections set and configured by the organization’s security policy. Firewalls can either be hardware and/or software based.

A firewall’s basic task is to control traffic between computer networks with different zones of trust. Typical examples are the Internet which is a zone with no trust and an internal network which is (and should be) a zone with high trust. The ultimate goal is to provide controlled interfaces between zones of differing trust levels through the enforcement of a security policy and connectivity model based on the least privilege principle and separation of duties.

A firewall is also called a Border Protection Device (BPD) in certain military contexts where a firewall separates networks by creating perimeter networks in a Demilitarized zone (DMZ). In a BSD context they are also known as a packet filter. A firewall’s function is analogous to firewalls in building construction.

Proper configuration of firewalls demands skill from the firewall administrator. It requires considerable understanding of network protocols and of computer security. Small mistakes can render a firewall worthless as a security tool.

Firewall Comparison

Every Windows XP has its inbuilt “windows firewall”. Whenever some new application needs to access the network, Windows Firewall asks, if you want to unblock internet access for this application. Windows integrated Firewall is good for home users, but if you need more control over your incoming and outgoing network traffic, you should get some more serious software. Some Anti-virus packages include integrated firewalls. Here we compare 5 firewall software packages: BlackIce, Internet Firewall, McAfee Firewall, Sygate Firewall, ZoneAlarm.
Criteria Ratings Overall

	BlackICE	Internet Firewall	McAfee	Sygate	ZoneAlarm
User Interface:	A-	B-	A-	A	A-
Effectiveness:	B	F	A-	A+	A
Customizability:	B-	D	B-	A	B-
Overall Value:	B	D-	B	A+	A-

Comparison SummaryOne great disappointment is Internet Firewall 2000. Its feature set is limited and the interface lacks good organization. IFW’s behavior of opening ports creates an enormous security risk, one that I’m not willing to take. As for its integrated feature set, most of these options can already be found in currently available freeware. I can find no real usefulness for this product compared to the other firewalls covered in this review. I honestly would not waste the time to download the Internet Firewall 2000 demo, let alone spend $39 for the full version.

strong>BlackICE Defender fared better than IFW2K, as it does feature several useful options. Its logging capabilities exceed the usability of any other product in this review. BID could use several improvements, however. A potential security risk is its inability to filter outgoing packet data. As intrusion programs become more sophisticated, the lack of outbound filtering could prove hazardous. Since outgoing connections are not monitored, a malicious program could transfer files and even personal information to any persons wishing to use the data for malicious purposes. Do remember that BlackICE Defender isn’t free, and I believe that better freeware packages are currently available.

McAfee Personal Firewall offers decent options to protect a single system for most Internet attacks. With a few updates to the base configuration, this package could be a powerful product. The interface is easily serviceable, especially for first time firewall users. The only major flaw I noted is the lack of viable LAN support features. It is hoped that McAfee will address this issue with a future release, as they have a great foundation to build on.

Zonelabs’ ZoneAlarm is a great freeware package. With simple network settings and a great interface, this adds up to a powerful Internet security package. ZA could become one of the best solutions available with a few minor improvements to the base package. The addition of more advanced configuration options would be useful, and would complete the already impressive feature set of this package. Even without this feature, ZoneAlarm proves to be a valuable product. I would have little problem in recommending this product to anyone seeking a decent personal firewall.

I would designate Sygate Personal Firewall as the most comprehensive personal firewall solution reviewed. SPF’s robust feature set combined with an efficient interface makes it suitable for all Internet users, whether they be novices or network administrators. With a freeware personal version available, I would recommend that all Internet users take a look at this product. The current version offers excellent security, and I only see SPF improving with future releases. If you only try one product, then Sygate Personal Firewall should be it.

The results of this firewall comparison are rather interesting. In most scenarios, the freeware applications were capable of meeting and even exceeding the capabilities of the purchased packages. It is refreshing to see that freeware applications are still viable, especially in this era when most useful products are tagged with costly prices.

For personal use I prefer using “Sygate personal firewall” which you can get free for home usage. But if I don`t need that much control, I can live with AOL free anti-virus software and Windows integrated firewall.