Q

Network security best practices

Learn why firewalls are necessary for any developed network security strategy in this network security Ask the Expert Q&A.

When operating a network, is it safe to forego firewall software on the second machine and rely on the Internet-facing machine firewall?
While you might be safe using a single firewall, this is generally frowned upon within the security community because it fails to implement the "defense-in-depth" strategy. By eliminating your software firewall, the Internet-facing firewall is the only device protecting your network. If something happens to that firewall (a malfunction, misconfiguration, compromise, etc.), you don't have any fallback.

Given the fact that most operating systems come with free integrated firewalls, there's no reason to disable your

host-based firewalls. I'd strongly encourage you to leave them turned on at all times.

MORE INFORMATION:

  • Learn how to design and implement a firewall solution.
  • Learn why firewalls are essential to any network security strategy.
  • This was first published in July 2006

    Dig deeper on Network Firewalls, Routers and Switches

    Pro+

    Features

    Enjoy the benefits of Pro+ membership, learn more and join.

    Have a question for an expert?

    Please add a title for your question

    Get answers from a TechTarget expert on whatever's puzzling you.

    You will be able to add details on the next page.

    0 comments

    Oldest 

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to:

    SearchCloudSecurity

    SearchNetworking

    SearchCIO

    SearchConsumerization

    SearchEnterpriseDesktop

    SearchCloudComputing

    ComputerWeekly

    Close