NetOp Desktop Firewall
May 11, 2005
$59 management util $1,950
- Ease of Use:
- Value for Money:
- Overall Rating:
Driver level firewall; location-based policies.
Difficult to choose application control; hard to manually apply a specific policy to a specific PC.
An effective way to run your company policy out to your entire network, Desktop Firewall is only slightly let down by management tools that require too much manual work.
With individual PCs being a high risk factor in a network, a personal firewall is an important consideration, particularly when you have notebooks going in and out of the company. CrossTec's NetOp Desktop Firewall is one choice.
The main firewall runs at the NDIS driver level, so no bad packets are passed up the stack to a waiting application. More importantly, it can be managed through the NetOp Policy Server, so you can roll out large installations without having to manually configure each computer. A policy server can be distributed using replica servers, as well, so you can cater for any network size.
One of the best features of the software is its ability to have multiple profiles depending on location.
For example, we configured our firewall to open up more ports when at home, but lock the computer down for the office environment. There is a comprehensive list of checks, including gateway and domain names, to verify which network a computer is connected to.
From there, it is simple to define policy rules. As with other personal firewalls, you can define which applications are allowed to access the network.
Unfortunately, you need to do this by manually locating the file name; we'd have preferred a list of default applications, such as Internet Explorer.
The firewall does not stop there, though. You can also create generic firewall rules based on port numbers or protocols. This way you can match the desktop firewall's policy to the company's, as well as introducing a level of application control.
The results are put into an executable file, which can then be put into a login script, forcing updates to be made whenever someone joins the network. It is an effective way of keeping on top of the situation.
However, it is more difficult using this software to apply specific profiles to specific groups of users. While this can be achieved by creating profiles to match specific groups, it is a less targeted approach than manually grouping PCs. That said, as a centralised way to protect your PCs and notebooks, NetOp scores highly.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry