pallino Posted March 2, 2015 Report Share Posted March 2, 2015 Dear EMSI Team, in the blog http://blog.emsisoft.com/2014/09/19/whats-the-point-of-having-a-firewall/ I just read that EMSI IS is EMSI AM + a software firewall (an improved firewall compared to OA one since it has a IPv6 support). What are other differences between the EMSI IS firewall and OA apart from the missing HIPS in IS firewall? Does EIS offer DNS Spoofing Protection File/Registry Shield as in OA? Thank you added IPv6 support Link to comment Share on other sites More sharing options...
Fabian Wosar Posted March 2, 2015 Report Share Posted March 2, 2015 No, EIS has neither. File and Registry Shield are HIPS features. DNS Spoofing Protection as done by Online Armor is pretty much incompatible with every major website as it assumes that no matter where on earth you are, everyone will get the same DNS results, which isn't the case nowadays. The results are dozens of false positives the moment a site uses certain CDNs or DDoS protection services. Link to comment Share on other sites More sharing options...
pallino Posted March 2, 2015 Author Report Share Posted March 2, 2015 Thank you! So just to understand it right, what does EMSI IS firewall do exactly? - it eliminates potential entry points/ports attackers could use to get onto your computer from the outside and so it keeps you invisible to network intruders? -it inspects network data packages and decide which data to block or allow, based on rules using also protocol-based filters? - it analyzes network traffic and can also link each data package with the program that generates it? Is it correct that the IS firewall - doesn't detect malware (as standalone, as added protection to EMSI AM) - dos not inspect every data package deeply on an application layer? Does it block outgoing connections sourced by malware (as standalone, as added protection to EMSI AM)? thank you! Link to comment Share on other sites More sharing options...
Fabian Wosar Posted March 3, 2015 Report Share Posted March 3, 2015 So just to understand it right, what does EMSI IS firewall do exactly?What firewalls are supposed to do: Limits application from accessing to network resources (application based firewall) and filter incoming network packets based on a strict rule set (packet filtering). Link to comment Share on other sites More sharing options...
pallino Posted March 5, 2015 Author Report Share Posted March 5, 2015 Last 2 questions: - Does EMSI AM or IS install a root certificate to be able to scan encrypted traffic? - how can EMSI IS firewall hide the pc it is instaled on from other devices inside the same home network (that might be infected)? How can all traffic from the internal network be blocked? What settings are needed? thank you! Link to comment Share on other sites More sharing options...
Fabian Wosar Posted March 5, 2015 Report Share Posted March 5, 2015 - Does EMSI AM or IS install a root certificate to be able to scan encrypted traffic?We don't. Our Surf Protection is designed to work without us having to break SSL/TLS. - how can EMSI IS firewall hide the pc it is instaled on from other devices inside the same home network (that might be infected)? How can all traffic from the internal network be blocked? What settings are needed?Just set your local network to public. Link to comment Share on other sites More sharing options...
pallino Posted March 6, 2015 Author Report Share Posted March 6, 2015 We don't. Our Surf Protection is designed to work without us having to break SSL/TLS. Just set your local network to public. I wasn't sure this would be enough (in the comment on the blog "What’s the point of having a firewall" it seemed to be more difficult)! thank you! Link to comment Share on other sites More sharing options...
Fabian Wosar Posted March 6, 2015 Report Share Posted March 6, 2015 You are welcome. Link to comment Share on other sites More sharing options...
Recommended Posts