Depends where you're surfing
No firewall will prevent your ISP from *****ing where you go if it wants to. What you need is not a firewall but a proxy. A proxy is simply another person's computer that you hook into first, and surf from there. Then all your ISP sees is the IP of that computer, not where you go!
If you're surfing websites you want to put a proxy in your browser that has port 80 or 8080 open. If you're surfing newsgroups you want a SOCKS proxy, port *080 open, in your newsreader. For newgroups (Usenet) never use your ISP's. Subscribe to an independent news provider to bypass your ISP.
Here's a good site for all types of proxies:
[url]http://tools.rosinstrument.com/proxy/[/url]
Hope that helped.
Bad ISPs... You're not the only one Sharon...
Would you care to name this censoring ISP?
I had an ISP that tried hard to hack my PC:
*] Running port scans from IPs in ISP's netblock.
2] When that didn't work he tried running port scans from ISP DNS IPs thinking he could get thru my firewall and/or I wouldn't notice scan packets. That didn't work either.
*] Then he "accidentally" emailed me virus. That didn't work also.
I dumped the bastard and got another ISP. I'm not going to pay anyone to hack/*****/censor me.
I s***est you:
*] Get a good firewall that will block outbound traffic (trojans) from your PC. Personally I prefer ZoneAlarm Pro. GRC firewall score***rd:
[url]http://grc.com/lt/score***rd.htm[/url]
If this link doesn't work, try later. Steve has been getting DDoS attacks.
2] Get good anti-virus prog and keep virus database up to date. Kaspersky AVP is probably the best. I use Grisoft AVG because I like interface and am careful what I do.
*] Get a good packet sniffer and learn how to use it.
[url]http://www.tamos.com/products/commview/[/url]
That's the only way you'll know what's going in and out of your computer. Launch your firewall first, then sniffer. That way sniffer is outside firewall and will display/log hits (attacks/probes/etc.).
Packet sniffers are intimidating for newbies but is worth learning. Besides, everyone was once a newbie.
4] Dump that crappy ISP and get a new one.
WHAT DOES HACK TRACER EXACTLY DO
HELLO THERE,
ii have nt used hack tracer and has no idea how it detects attack.
i still feel sharon is still vulnerable because if any one use anonymous port scan or ftp bounce or similar methods it would be difficult to determine if any port scan has been done on ur comp.
to prevent attacks its ad****ble to close all ur unused open ports.
how to do that i dont know,i hope some expertise in this group will help u.
good luck sharon.
i will try yo find get u a little more details,but i have to go now.
ISP tracking... johnny...
[quote][i]By johnny:[/i]
I'm not sure about that. Say you do a traceroute (tracert) from your computer to another IP address. Your real (ISP) IP doesn't show in any of the hops but your proxy does. That would seem to mean that your ISP is cut out of the loop, as far as detection goes, because it's not involved in the packet processing. All packet activity is passing through the proxy, not your ISP. For all anyone can tell your computing begins at the proxy machine, not yours.[/quote]
I believe you're thinking of it from the remote host side; *****ing by IPs. Think of it like this: Your ISP is your portal to the Internet. They connect you to the Internet. All your traffic flows through the ISP's servers. They can monitor all your packets regardless of IPs. The only way to prevent ISP *****ing you is: Use a SSL tunneling proxy (https) or possibly an anonymizer service. This will give the ISP only the proxy's IP and the ISP can't read your packets to determine what Web sites you visit because they are encrypted.
Firewalls/port scans/fragments...
Thanks DATA,
[quote][i]By DATA:[/i]
firewalls/port scan
hi,
some of other port scans which may not be easily detected are stealth port scanners,sys and fin attacks(half opening of ports),sending ip fragments and ftp bounce.[/quote]
In ZA Pro firewall I can block all fragments. Maybe I should select this option?