Bits'n'Bytes

As heard on CJCD

Episode 32

I get asked quite often if people should use a router or a firewall. My typical answer is if you're worried enough to ask, consider using both. Or at least get a good router with built in firewall capabilities. Two layers of security is better than one.

A router is used to redirect a public Internet Protocol, or IP, address to a computer or a group of computers. The router is the only part of the network that's visible to other computers on the internet and all the computers behind the router have what's called a private IP address. This address is assigned by the router and is completely different from the address the router shows to the public. A single router, used with hubs or switches, can give private addresses to hundreds of computers at once - all of which can access the Internet using a single public IP address. This is done using a protocol called Network Address Translation, or NAT.

A router, using NAT, acts as a form of protection from hacker types who are using port scanners to find open systems. The router may respond to a port scan, but it doesn't have your personal information stored on it - that's on your computer, which now has a completely different address than the one the port scanner is scanning. If you have a router with built in firewall capabilities, the router probably won't even respond, so you're security is a little higher, again.

Now, if by some error - be it human or hardware, a hacker-type or virus is able to get through the router, adding a firewall to your computer - even if it's just the Windows Firewall in Windows XP - makes it doubly hard to get to your computer. This is why I suggest two layers of security. Make it as difficult as you can to get in, and you'll keep out the vast majority of what's trying to access your system.

Stay tuned next week when I talk about file sharing.

I’m Computer Dave, thanks for your time.