Question:
Why do routers have a firewall when windows has a firewall?
JT
2009-01-13 14:11:57 UTC
If it's ok to connect a modem straight to a computer, why can't i turn off the firewall on the router?
34 answers:
. ʌvʌvʌ .
2009-01-13 14:46:31 UTC
you can leave them both on it is safer one external and one internal.

but you can not run two firewalls in the same computer it will slow you down so much it will make your computer useless.







The Phlebob
2009-01-13 14:44:06 UTC
A "hardware" firewall such as a router is an added line of defense. Since it's a separate device, it would have to be breached in an entirely different way from an attack on an on-PC software firewall. The simple fact of it being there adds security.



On the other hand, a PC firewall can be tuned to your requirements and can be "smarter" about your machine.



Now, the actual Windows Firewall, that is, the one that comes with Windows, isn't necessarily the best PC firewall you can get. Early versions had no protection against malware that was already on your machine and was using it to do bad things on the Internet.



My advice: Keep the firewall up in your router, get a good third-party software firewall and turn off Windows Firewall. Several, such as ZoneAlarm and (I think) Comodo are even free.



Hope that helps.
agent-X
2009-01-13 14:38:16 UTC
There are two kind of firewalls: software and hardware.

The first type is usually integrated inside modern operating systems, either like stand-alone apps (such as in windows) or straight intro the kernel (such as Linux or Mac OS's).

Unfortunatelly, every peace of software out there is not perfect, so bugs and problems may appear out of nowhere, sometimes when you're least expecting them.

If this can be ok for the normal home user, for a firm that depends on its internal system security (and by ssytem I'm not reefring to only one computer) it's actually something that can't be accepted.

Of course, the chances for this to happen are very few, but it doesn't assure anybody that if they are going to use it they will be safe.

Hardware firewalls are devices strictly build for this, and nothing else. They usually are integrated into high-end routers, but they also come separetely.

I'm not going to talk much about them, so going straight to your question:

If you are sure that all the pc's from your local network that connect through your router are safelly protected from viruses and spyware then by all means disable all the firewalls from the clients and use the one that comes with your router (even if it's software).

In case you're not sure, it's like protecting a castle from the outside invasion when the enmy is already inside.
PoohBearPenguin
2009-01-13 14:44:24 UTC
Firewall is an overused term. The thing on your PC isn't really a firewall. Although it does try to protect your from some threats, if your PC was connected directly to your modem, it's IP address will be visible to the internet. The firewall on the PC is more concerned about connections going out of your PC, and whether or not they should be allowed. It does little, if anything, about incoming connections.



The firewall on your router is a true firewall. It provides protection against unauthorized incoming connections for your entire network. It also helps to "hide" your PCs and other equipment (like printers) from the internet so that someone from the internet cannot access them directly. More sophisticated firewall products can also detect certain types of attacks and can actions that will minimize the damage and/or alert the administrator to the problem.



In general, you should leave your PC connected to your router. Not only for security reasons, but it also makes it easier for other computers and devices in your house to connect to each other, or to the internet.



You should also leave the firewall on your PC turned on as well, just in case some malware or virus manages to elude your anti-virus or other security software, and tries to connect to the internet for some reason, the firewall on your PC will catch this and shut it down. That can at least help contain the problem to your PC, as opposed to it infecting the rest of your network, or sending your vital data out to its home base on the internet.
2009-01-13 14:34:59 UTC
Well, first of all, Windows firewall is a joke. Secondly, even if it was a good one, most people wouldn't know how to configure it correctly and would likely allow much more than they should simply to eliminate problems. Thirdly, not everyone uses Windows, and not everyone that does use Windows uses a version that has a firewall. And lastly, it may be a byproduct of a routing process. If the router picks up some incoming connection attempt, since it hasn't been instructed which computer to send it to, it simply denies it.
Simon
2009-01-13 14:52:19 UTC
A hardware firewall is faster than a software firewall, and as others have mentioned, it's much less prone to being compromised than the Windows firewall.



For a home setup, it also provides the advantage that you can protect all computers in the network from one location, regardless of whether they have their own software firewalls or not.



Hardware firewalls also provide certain advanced features that your basic Windows firewall can't do for you, like port forwarding, logging, parental controls that your kids can't turn off etc.
2009-01-13 14:43:04 UTC
The simple reasoning is: not everyone has Windows. If you don't have a firewall on your router and you don't have an operating system with a firewall, you're not protected.



Also: (not that you suggested this, but) don't ever turn off your router's firewall.
2016-04-10 08:35:10 UTC
The router firewall is a hardware firewall, windows firewall is a software firewall they are not the same. Best to run a hardware firewall & a software firewall. I agree with GEORGINA S comodo firewall is better than window firewall.
Blind Dragon
2009-01-13 14:40:13 UTC
After reading the answers in this thread it seems there are some major confusion about security.



Windows Firewall only secures incoming connections - not outgoing = you need a 3rd party firewall



The Firewall on your router will not protect you from downloading a ware and it connecting to a fake DNS - these days malware writers have figured out how to infect the firmware of routers and Trojan.DNSchanger is running rampant lately.



If you want to learn the full circle of Security we just start a thread called Security 101 => http://www.tech-101.com/system-security/topic22.html
Expert
2009-01-13 14:28:42 UTC
Router firewalls came before Windows firewall.



Router firewalls protect everything connected to them, whether they run Windows or not.



Using Windows firewall slows down your PC. Using the router's firewall won't.



But to answer your question, you can turn off the firewall on the router, or in Windows. If you can leave them both running, do. If you feel compelled to turn one off, turn off Windows'.
Eddy Sax
2009-01-13 14:29:35 UTC
Because a router already has all the hardware necessary to run a firewall, adding one is just a matter of putting it in with the firmware, and since having a hardware firewall is beneficial, why would any manufacturer leave it out?
Kathryn P
2009-01-13 14:57:30 UTC
if you are going to turn off a firewall, don't trust Windows firewall over a firewall developed by a router company.



There are people out there who's entire life's goal is to break through Windows firewalls and other security features.



Every time they patch one hole, the hackers find another one.
EiNST3iN
2009-01-13 14:27:18 UTC
Cause it has its own chipset and management system. The firewall for just your router and your computer are two very different setups and types of firewalls. The one for your router basically just protect the routers settings, thats all. The one on your computer actually covers your PC and all of your files.
Uncle Pennybags
2009-01-13 14:46:10 UTC
A router's firewall is much more effective, in that it prevents harmful traffic from even reaching your computer to exploit weaknesses in any software firewall you might be running.



Besides, it wasn't all that long ago that OS's didn't have built-in firewalls.
giraffe
2009-01-13 14:46:19 UTC
The firewall on the router stops many events which leaves your computer able to do more work.



It also allows you to use gaming machines etc. on the network, and they may not have firewalls.
2009-01-13 15:05:57 UTC
the router firewall was there before M$FT started using software firewalls.



hardware firewalls are better than software firewalls in most cases - unless you are a network engineer and know what to do and how to do it.
Belgariad
2009-01-13 14:29:43 UTC
Some people are stupid enough to turn their windows version of firewall off thinking that the brand name firewall that they got will protect them.
Nitin
2009-01-13 14:31:13 UTC
DONT DO THAT. if you want turn off windows firewall. Router firewall can ward of attacks that windows cant such as UDP attack. I would suggest you read and see how to configure the fiewall rules on the router.
Sophie B
2009-01-13 14:23:22 UTC
The router firewall protects the router.. every computer connected to the router needs its own firewall,... they don't protect each other....
Bobby
2009-01-13 14:53:30 UTC
Routers have firewall to prevent other people to steal your signal. Windows have firewall to prevent other people to steal your sentitive or personal info in your computer.
2009-01-13 14:32:53 UTC
because windows firewall is so vulnerable my 7 yrd old cousin could bypass all of its security features =)



and routers firewalls ar for the thing coneccted to the network
Henry
2009-01-13 14:33:27 UTC
not all Operating System (Mac, Linux, Unix, Windows, Ipod, phone, game,...) has firewall. Thus the router does have one.
spooky_eerie_spooky
2009-01-13 14:28:43 UTC
A hardware firewall is the best, most effective and reliable protection for any computer.No software even comes close-regardless of what they say.



s_e_s
Greshnab
2009-01-13 14:41:09 UTC
bottom line answer is because the windows firewall sucks...



it is the biggest target for hackers since windows si the most popular os.. which means it is the most compromised firewall.
Karl L
2009-01-13 14:28:31 UTC
Its always good to have the two. Besides routers can be bypassed because hackers can use a printer, laptop or any other device linked to a network as a means to enter your computer. Including viruses.
jeligula
2009-01-13 14:21:27 UTC
Because people are always finding ways around software security and Windows really lends itself to that. You router firewall cannot be compromised.
Rick
2009-01-13 14:28:53 UTC
With all the security issues surrounding Windows (esp. Explorer) do you really trust their firewall??
IAmWhoIAm
2009-01-13 14:25:03 UTC
The router's extra firewall makes your system more secure.
2009-01-13 14:33:07 UTC
Firewalls are for grandma's



Turn off your firewall



It slows you down



Are you a MAN or what?
Information Police
2009-01-13 14:28:27 UTC
1) Windows didn't always have a firewall

2) not all pcs use windows

3) old PCs with old versions of windows don't have a good windows firewall

4) hackers are always finding a way around windows security.
2009-01-13 14:44:57 UTC
because that the way the router protects you computer from hackings and viruses
2009-01-13 14:35:58 UTC
Double the safety.
M.D. Hotaling
2009-01-13 14:25:39 UTC
some op sys dont have firewalls...especially open source
2009-01-13 14:26:41 UTC
true dat home boy


This content was originally posted on Y! Answers, a Q&A website that shut down in 2021.
Loading...