Info about eset smart security ?

[V3.Firewall 2]

Just to be clear: the "trial" version of ESET is a license of 30 days.

You can remove the "trial" word because is a license thing, and not affect the software at all.

 

what ? is trial dude when you have 30 days,full license is when you have 6 months or 1 year etc

[Gonzalo Alvarez 66]

Whay I try to tell you is:

 

There is no difference in the software if is licensed or trial. Works in the normal way for both.

 

Yes, there are other trial than 30 days but depends on the country or marketing campaign.

[rekun 43]

I think you do not fully understand how this works.

Eset Smart Security will not prevent your Internet from going down, as it can only block the traffic after it reaches your computer. If someone sends you a ddos attack it will flood your Internet connection and make it unstable/not useable. This traffic reaches your router, which do not forward it, since the traffic is most likely not one of the 3 ports you have forwarded. Therefore the traffic never reaches your computer, and Eset can't detect it.

The only thing you can do about is to talk to your ISP about ddos protection, but this is an enterprise features, and expensive.

No software firewall will ever be able to protect from a ddos attack.

If you were to connect your computer to the Internet without a router in front of it, you would properly see it block something, however your Internet would still go down, as the issue is that there is too much traffic trying to reach your system, and that your Wan connection is too small to deal with it

[V3.Firewall 2]

Whay I try to tell you is:

 

There is no difference in the software if is licensed or trial. Works in the normal way for both.

 

Yes, there are other trial than 30 days but depends on the country or marketing campaign.

 

thanks for info but you misunderstood

 

yes you have full software 30 days trial with or not licensed not a big deal

Edited April 5, 2016 by V3.Firewall

[V3.Firewall 2]

I think you do not fully understand how this works.

Eset Smart Security will not prevent your Internet from going down, as it can only block the traffic after it reaches your computer. If someone sends you a ddos attack it will flood your Internet connection and make it unstable/not useable. This traffic reaches your router, which do not forward it, since the traffic is most likely not one of the 3 ports you have forwarded. Therefore the traffic never reaches your computer, and Eset can't detect it.

The only thing you can do about is to talk to your ISP about ddos protection, but this is an enterprise features, and expensive.

No software firewall will ever be able to protect from a ddos attack.

If you were to connect your computer to the Internet without a router in front of it, you would properly see it block something, however your Internet would still go down, as the issue is that there is too much traffic trying to reach your system, and that your Wan connection is too small to deal with it

 

You misunderstood before buying this router [TL-WR841N and this Agnitum Outpost Firewall Pro 9.3]

 

My Firewall Windows is OFF because it gives you 0 protection against hacker or ddos

 

The only protection that I have was ESET Smart Security 8/9 trial test that secure my network

 

And when I was attacked by hacker with ddos ESET Smart Security 8/9 not offered me who knows what security

 

That's why I explain the company needs to seriously improve the firewall against these attacks

 

Firewall Eset at what level this is now you have 0 protection for your networks against hacker or ddos

Edited April 5, 2016 by V3.Firewall

[rekun 43]

My statement still holds, as the Eset firewall would block all traffic which isn't initiated from inside the network. This include the traffic recieved from the ddos attack. This would not be detected as hacker attacks, as this normal behavior.

 

And still, no software firewall can prevent a ddos attack, as it can only block the traffic once it reaces your computer, and then it will be too late.

[Gonzalo Alvarez 66]

Hi,

 

@V3.Firewall - That's why I explain the company needs to seriously improve the firewall against these attacks

 

I believe every company will (soon or later) improve his products to give the clients more protection.

 

@rekun -  And still, no software firewall can prevent a ddos attack, as it can only block the traffic once it reaces your computer, and then it will be too late.

 

Agree with you @rekun, for DDOS attacks protection is better hardware than software, so is limited what

you can do by software (I mean programming).

 

Anyway, the statement of several company's usually is:

 

"will be included in our next version" or "will be added in our next product"

 

Best case scenario, is not going to happen now, but they say always read the

suggestions.

Edited April 5, 2016 by Gonzalo Alvarez

[itman 1,659]

What is the difference between a DoS and DDoS Attack?

 

DDoS refers to a ‘distributed denial of service’ attack. With this attack a hacker will use multiple servers to attack another target server i.e. the attack is distributed across multiple servers. Traffic associated with a single DDoS attack may originate from hundreds or thousands of compromised servers or PCs.

 

Whereas a ‘denial of service’ (DoS) attack is when a single server is used to attack another targeted server.

 

Can a DDoS Attack be prevented?

 

While you can secure a server and your web content, this will only prevent your server from being used in a DDoS attack. It is not possible to prevent your server from being targeted by a DDoS attack. There are steps that can be taken to help mitigate the risk and to better manage the attack when it does happen. In a rapidly changing landscape, Hetzner has identified a set of best practices that enables us to minimise the impact of a DDoS attack on our infrastructure and our customers.

 

What if I am the target of a DDoS Attack?

 

The wide range of motives for these attacks -- political (hacktivism) or social (malice) makes every merchant or organisation with an online presence a potential target.

 

People often mistakenly assume that all it takes to deal with a DDoS attack is a well configured, powerful firewall. The reality is that unless your website is hosted on a very large distributed network, where their cumulative traffic capacity is greater than the traffic generated by a DDoS attack, effectively allowing the network to absorb the attack while passing on legitimate traffic to your website, your website or server will be offline for the duration of the attack. This can take a number of hours and even days in very well formed attacks. In addition to the upstream network capacity there are other components in the chain that can simply not handle the volume of a significant attack i.e. routers, switches, firewalls, servers, etc.

 

An effective way to mitigate a DDoS attack while still being able to serve legitimate traffic is to use a ‘traffic cleaning’ service. There are a number of methods that are deployed -- in essence all traffic is passed through a ‘cleaning centre’ which separates ‘bad’ traffic (DDoS attacks) and only sends good traffic to the server. This service needs to run on a significantly large and distributed network and requires specialist skills. Hence the significant monthly cost associated with this type of service.

 

Ref.: https://hetzner.co.za/help-centre/website/what-is-the-difference-between-a-dos-and-ddos-attack/

Edited April 5, 2016 by itman

[Gonzalo Alvarez 66]

Excellent post @itman!!

[V3.Firewall 2]

What is the difference between a DoS and DDoS Attack?

 

DDoS refers to a ‘distributed denial of service’ attack. With this attack a hacker will use multiple servers to attack another target server i.e. the attack is distributed across multiple servers. Traffic associated with a single DDoS attack may originate from hundreds or thousands of compromised servers or PCs.

 

Whereas a ‘denial of service’ (DoS) attack is when a single server is used to attack another targeted server.

 

Can a DDoS Attack be prevented?

 

While you can secure a server and your web content, this will only prevent your server from being used in a DDoS attack. It is not possible to prevent your server from being targeted by a DDoS attack. There are steps that can be taken to help mitigate the risk and to better manage the attack when it does happen. In a rapidly changing landscape, Hetzner has identified a set of best practices that enables us to minimise the impact of a DDoS attack on our infrastructure and our customers.

 

What if I am the target of a DDoS Attack?

 

The wide range of motives for these attacks -- political (hacktivism) or social (malice) makes every merchant or organisation with an online presence a potential target.

 

People often mistakenly assume that all it takes to deal with a DDoS attack is a well configured, powerful firewall. The reality is that unless your website is hosted on a very large distributed network, where their cumulative traffic capacity is greater than the traffic generated by a DDoS attack, effectively allowing the network to absorb the attack while passing on legitimate traffic to your website, your website or server will be offline for the duration of the attack. This can take a number of hours and even days in very well formed attacks. In addition to the upstream network capacity there are other components in the chain that can simply not handle the volume of a significant attack i.e. routers, switches, firewalls, servers, etc.

 

An effective way to mitigate a DDoS attack while still being able to serve legitimate traffic is to use a ‘traffic cleaning’ service. There are a number of methods that are deployed -- in essence all traffic is passed through a ‘cleaning centre’ which separates ‘bad’ traffic (DDoS attacks) and only sends good traffic to the server. This service needs to run on a significantly large and distributed network and requires specialist skills. Hence the significant monthly cost associated with this type of service.

 

Ref.: https://hetzner.co.za/help-centre/website/what-is-the-difference-between-a-dos-and-ddos-attack/

 

Anyone can search for information on Google what is ddos attack or dos attack etc not something new

 

There are many ways how to have protection against DDoS [but it costs a lot of money so not great at all]

 

Here disagree with you about firewall,if the company wants can make a firewall to have strong protection

 

I documented a few days ago [Kaspersky Anti-Virus 2016] they have the best firewall detect ddos attack

 

But if some company do not care to provide good protection for your network  then nothing you can do

 

Search other company that offers good protection for network against hacker and ddos attack

Edited April 6, 2016 by V3.Firewall

[itman 1,659]

Kapersky indeed does offer a DDoS solution:

 

Kaspersky Lab is the first anti-malware vendor to provide a DDoS protection solution – and that means no other anti-DDoS supplier can match the expertise and scale of our in-house security intelligence department and infrastructure.

 

A few more details on this solution:

 

If you require a turnkey solution, Kaspersky Lab and its partners can cover the vast majority of set up procedures – including:

 

• Installing the sensor software and hardware on your site
• Setting up traffic redirection to our cleaning centers
• Setting up ‘clean’ traffic delivery to your business

 

Ref.: hxxp://media.kaspersky.com/kaspersky-ddos-protection-data-sheet.pdf

 

Hum ............... This Kapersky solution looks eerily similar to the ISP recommendation I posted previously. 

 

It appears that you are confusing DoS protection that exists in many security vendor software firewall products with what is required for DDoS protection. 

Edited April 6, 2016 by itman

[V3.Firewall 2]

Kapersky indeed does offer a DDoS solution:

 

Kaspersky Lab is the first anti-malware vendor to provide a DDoS protection solution – and that means no other anti-DDoS supplier can match the expertise and scale of our in-house security intelligence department and infrastructure.

 

A few more details on this solution:

 

If you require a turnkey solution, Kaspersky Lab and its partners can cover the vast majority of set up procedures – including:

 

• Installing the sensor software and hardware on your site

• Setting up traffic redirection to our cleaning centers

• Setting up ‘clean’ traffic delivery to your business

 

Ref.: hxxp://media.kaspersky.com/kaspersky-ddos-protection-data-sheet.pdf

 

Hum ............... This Kapersky solution looks eerily similar to the ISP recommendation I posted previously. 

 

It appears that you are confusing DoS protection that exists in many security vendor software firewall products with what is required for DDoS protection. 

 

Dear itman it seems that you do not understand how strong is DDoS attack

 

Difference between dos and ddos attack is dos have weak attack and ddos have strong attack

 

I do not believe you experienced a powerful DDoS attack to understand how dangerous is for network

 

When installing antivirus with firewall you expect to have strong protection for your network

Many company creat antivirus with firewall but you have 0 protection for your networks

 

Example:antivirus with firewall resembles the Windows firewall 0 protection )) for networks

 

Edited April 6, 2016 by V3.Firewall

[Gonzalo Alvarez 66]

The first fast read on kaspersky website include the "business" word and after "enterprise" word,

in that product. Clearly is (again) a product with cost and not design for the Home User market.

 

I made a long post but this thread is not longer worthy of that or my attention,

see you out there! 

I

[rekun 43]

Sorry to be repeating myself (and itman + others)

 

There is never ever going to be a software firewall that is able to prevent connection failure during a ddos attack, becaurse it is simply protecting the wrong thing.

 

Think of it like this :

During a ddos diffent computers around the world will send 1000 mbits

You only have "normal" internet connection with about 20 mbits

The software firewall will block the 20 mbit, but can do nothing about the remaining 980 mbits, as that will never reach you or your router/hardware firewall.

 

You can do different things to solve this. you can buy an internet connecting that is bigger than to total amout of traffic recieved from the ddos attack (properly not going to happen). Make a deal with your ISP or another company which has this extreme amounts of bandwith, and have them filter the bad traffic from the good traffic.

 

Both ways are very expensive, and not something you would to for a normal household.

 

To sum it all up, the software firewall will never to able to protect you from a ddos.

[V3.Firewall 2]

 

The first fast read on kaspersky website include the "business" word and after "enterprise" word,

in that product. Clearly is (again) a product with cost and not design for the Home User market.

 

I made a long post but this thread is not longer worthy of that or my attention,

see you out there! 

I

 

 

Dear Gonzalo Alvarez I do not understand you ? no one forced you to come to this topic and post

 

Maybe I got it wrong info about kaspersky but they have the best firewall for networks and are the best on the market

Edited April 7, 2016 by V3.Firewall

[V3.Firewall 2]

Sorry to be repeating myself (and itman + others)

 

There is never ever going to be a software firewall that is able to prevent connection failure during a ddos attack, becaurse it is simply protecting the wrong thing.

 

Think of it like this :

During a ddos diffent computers around the world will send 1000 mbits

You only have "normal" internet connection with about 20 mbits

The software firewall will block the 20 mbit, but can do nothing about the remaining 980 mbits, as that will never reach you or your router/hardware firewall.

 

You can do different things to solve this. you can buy an internet connecting that is bigger than to total amout of traffic recieved from the ddos attack (properly not going to happen). Make a deal with your ISP or another company which has this extreme amounts of bandwith, and have them filter the bad traffic from the good traffic.

 

Both ways are very expensive, and not something you would to for a normal household.

 

To sum it all up, the software firewall will never to able to protect you from a ddos.

 

Now you rekun what you said is correct you know why ? more Company come with antivirus and firewall

 

But that firewall help your networks ? no 0 protection against hacker or ddos we are in 2016

 

The company does not care much to have strong protection for your networks

create very weak firewall that provides 0 protection all they care about is making money

 

The only company who provide good protection for your networks is [Kaspersky vs Bitdefender]

[SweX 871]

 

Kapersky indeed does offer a DDoS solution:

 

Kaspersky Lab is the first anti-malware vendor to provide a DDoS protection solution – and that means no other anti-DDoS supplier can match the expertise and scale of our in-house security intelligence department and infrastructure.

 

A few more details on this solution:

 

If you require a turnkey solution, Kaspersky Lab and its partners can cover the vast majority of set up procedures – including:

 

• Installing the sensor software and hardware on your site

• Setting up traffic redirection to our cleaning centers

• Setting up ‘clean’ traffic delivery to your business

 

Ref.: hxxp://media.kaspersky.com/kaspersky-ddos-protection-data-sheet.pdf

 

Hum ............... This Kapersky solution looks eerily similar to the ISP recommendation I posted previously. 

 

It appears that you are confusing DoS protection that exists in many security vendor software firewall products with what is required for DDoS protection. 

 

Dear itman it seems that you do not understand how strong is DDoS attack

 

Difference between dos and ddos attack is dos have weak attack and ddos have strong attack

 

 

Hmmm...so you know that they are strong attacks and difficult to handle, even for some ISP's - and at the same time you believe a simple consumer router like TL-WR841N will help against it.

 

"Maybe I got it wrong info about kaspersky but they have the best firewall for networks and are the best on the market".

 

I understand now. They are the best. But you still want to use ESET

[V3.Firewall 2]

 

 

Kapersky indeed does offer a DDoS solution:

 

Kaspersky Lab is the first anti-malware vendor to provide a DDoS protection solution – and that means no other anti-DDoS supplier can match the expertise and scale of our in-house security intelligence department and infrastructure.

 

A few more details on this solution:

 

If you require a turnkey solution, Kaspersky Lab and its partners can cover the vast majority of set up procedures – including:

 

• Installing the sensor software and hardware on your site

• Setting up traffic redirection to our cleaning centers

• Setting up ‘clean’ traffic delivery to your business

 

Ref.: hxxp://media.kaspersky.com/kaspersky-ddos-protection-data-sheet.pdf

 

Hum ............... This Kapersky solution looks eerily similar to the ISP recommendation I posted previously. 

 

It appears that you are confusing DoS protection that exists in many security vendor software firewall products with what is required for DDoS protection. 

 

Dear itman it seems that you do not understand how strong is DDoS attack

 

Difference between dos and ddos attack is dos have weak attack and ddos have strong attack

 

 

Hmmm...so you know that they are strong attacks and difficult to handle, even for some ISP's - and at the same time you believe a simple consumer router like TL-WR841N will help against it.

 

"Maybe I got it wrong info about kaspersky but they have the best firewall for networks and are the best on the market".

 

I understand now. They are the best. But you still want to use ESET

 

 

 

True Eset System Req:512 MB (1 GB for Vista x64) RAM of system memory

 

Kaspersky System Req:1 GB (32-bit) / 2 GB (64-bit) available RAM

 

Bitdefender System Req:1 GB (32-bit) / 2 GB (64-bit) available RAM

[rekun 43]

While they obviously care about making money, your statement about providing no protection is simply wrong, and serves as a proof that you don't fully understand how this is working.

It is simply impossible for a software firewall to protect from ddos, but they can protect from malicious traffic, and this is what Eset and other software firewalls do.

They analyzes the traffic patterns, and detect exploits and other stuff like traffic going to C&C servers. This very useful. Software firewalls have a clear advantage here, as they know what processes and services are causing this traffic. A hardware firewall doesn't know this, and therefore ca not provide the same amount of insight.

Think of it like this: you have bought a pizza, that you need to get sliced so you can share it with your lovely wife.

You have brought a hammer to do this, and is not very good at it. The next day you go the the store and complain about how the hammer being bad at slicing pizza. The guy's at the store knows this, and recommends you to buy a knife instead as it is made for slicing stuff.

The bottom line is that it is not because it isn't working, it's because you have the wrong tool. A software firewall is not supposed to protect you from a ddos, so of course it is bad at it. Nor will it ever be good at it, as it not its purpose, and it can only protect you from the traffic that reaches your computer, which is most likely less than 1% of the traffic that's coming from the ddos.

[V3.Firewall 2]

While they obviously care about making money, your statement about providing no protection is simply wrong, and serves as a proof that you don't fully understand how this is working.

It is simply impossible for a software firewall to protect from ddos, but they can protect from malicious traffic, and this is what Eset and other software firewalls do.

They analyzes the traffic patterns, and detect exploits and other stuff like traffic going to C&C servers. This very useful. Software firewalls have a clear advantage here, as they know what processes and services are causing this traffic. A hardware firewall doesn't know this, and therefore ca not provide the same amount of insight.

Think of it like this: you have bought a pizza, that you need to get sliced so you can share it with your lovely wife.

You have brought a hammer to do this, and is not very good at it. The next day you go the the store and complain about how the hammer being bad at slicing pizza. The guy's at the store knows this, and recommends you to buy a knife instead as it is made for slicing stuff.

The bottom line is that it is not because it isn't working, it's because you have the wrong tool. A software firewall is not supposed to protect you from a ddos, so of course it is bad at it. Nor will it ever be good at it, as it not its purpose, and it can only protect you from the traffic that reaches your computer, which is most likely less than 1% of the traffic that's coming from the ddos.

 

Impossible for a software firewall to protect from ddos ? that's what you think

 

And these two company Anti DDoS Guardian vs FortGuard - Professional Anti-DDoS ? )

 

Website FortGuard:

hxxp://www.fortguard.com/

 

Website Anti DDoS Guardian:

hxxp://www.anti-ddos.net/

 

You have much to learn

Edited April 9, 2016 by V3.Firewall

[SCR 195]

V3.Firewall,

 

It would seem that you have resolved your problem with ddos. Just install the software you refer to in your previous post and you are good to go.

[V3.Firewall 2]

V3.Firewall,

 

It would seem that you have resolved your problem with ddos. Just install the software you refer to in your previous post and you are good to go.

 

Yes i final fixed my problem against ddos attack [Router TL-WR841N vs Agnitum Outpost Pro Firewall 9.3]

[itman 1,659]

 

And these two company Anti DDoS Guardian vs FortGuard - Professional Anti-DDoS ? )

 

Website FortGuard:

hxxp://www.fortguard.com/

 

Website Anti DDoS Guardian:

hxxp://www.anti-ddos.net/

 

You have much to learn

 

 

Interesting. Appears whatever security solution you installed isn't even providing you basic protection.

 

The FortGuard link you posted is blocked outright by Eset. Further brief examination yields the company is an outright scam located in mainland China: hxxp://www.scamadviser.com/check-website/fortguard.com . Wilders had a discussion on FortGuard a while back and came to the same conclusion: hxxp://www.wilderssecurity.com/threads/anyone-heard-of-fortguard.233363/ .

 

As far as Website Anti DDoS Guardian goes, it appears to offer good protection but is a server based product. As such, not relevant to home user PC protection:

 

Anti DDoS Guardian Key Features:

 

◾Protects from ongoing DDOS/DOS attacks that attempt to overwhelm a web server
◾Protects Apache servers, mail servers, Camfrog servers, VoIP PBX networks and more
◾Protects against Windows Remote Desktop brute force password guessing attacks, SYN attacks, IP flood, TCP flood, UDP flood, ICMP flood, slow HTTP DDoS attacks
◾Requires Windows 2000 or later

 

Hopefully, the next DDoS attack you have will just crash the router you purchased and not take down your entire home network in the process. Wait ....... if the router crashes, the home network is also out of commission as far as any Internet communication is concerned.

 

 

 

Edited April 9, 2016 by itman

[SCR 195]

 

V3.Firewall,

 

It would seem that you have resolved your problem with ddos. Just install the software you refer to in your previous post and you are good to go.

 

Yes i final fixed my problem against ddos attack [Router TL-WR841N vs Agnitum Outpost Pro Firewall 9.3]

 

 

I'm glad you have yourself straightened away. However, I had the same experience and came to the same conclusion as itman stated. It might be a good idea for you to check your new security by using the links shown in this excellent post by SweX: https://forum.eset.com/topic/7179-amtso-security-features-check/?p=38904

[rekun 43]

Hi again

Nothing has changed from the last thread.

No software firewall will ever be able to protect you from a ddos.

We have tried to explain this to you before, but failed. You clearly have no idea how this works. The traffic never reaches your computer, so Eset can't do anything about it.