My subject title sounds stupid on the face of it but allow me to ellaborate:

I connect to the net through a router. If I run Vista with just the built in firewall (as I'm still waiting patiently for Zone Alarm et al to get off their butts and release a compatible product!) should I be safe?

I've seen before people on other forums state that if you are behind a router, as I am, that you don't need a software firewall.

How much truth is in this?

Cheers

Yes you do. Router doesn't stop what goes out.

I've seen before people on other forums state that if you are behind a router, as I am, that you don't need a software firewall.

Not here. These people are totally uninformed. You join them and you will lose out.

i_XpUser

Ok, thanks for the heads up.

This is the only thing stopping me from installing and using Vista at the moment. I've tried some like Jetico on Vista in VirtualBox just to see how good they are, but it seems a bit of a mess, interface wise and is a bit too complicated when compared to something like Zone Alarm.

You already have Vista FW. It is enabled by default and is a two-way FW. Use it until ZA is available.

i_XpUser

Just to echo what XPUser is saying, yes, you need a software firewall to block outgoing requests. Vista's will do that.

As a side note, I would recommend against ZoneAlarm anyway. Check out Kerio. It's lighter and provides very good protection. There is a free version of it.

www.sunbeltsoftware.com

However, they don't have a Vista compatible version at this time, either.

TECH-NO-LOGICAL ROMANCE!

http://www.homestarrunner.com/tgs12.html

The default behavior of the new Windows Firewall is to:

Block all incoming traffic unless it is solicited or it matches a configured rule.

Allow all outgoing traffic unless it matches a configured rule.

You can configure the new Windows Firewall with the Windows Firewall item in Control Panel, which displays the same set of configuration options as for the current Windows Firewall. You can configure basic settings for the new Windows Firewall, but you cannot configure enhanced features.

Because of the number of advanced configuration options and the value of having the same GUI for both local and Active Directory Group Policy-based configuration, the new Windows Firewall can also be configured with an MMC snap-in named Windows Firewall with Advanced Security, which is available in the Administrative Tools folder.

All of this from Microsoft itself. http://www.microsoft.com/technet/co...

It sounds to me like you have to have the snap-in to configure the firewall for advanced options like outbound filtering. It also sounds like outbound filtering is non existent until you do. But then again I don't have Vista to check this out.

I have a router and don't run a software firewall on my computer. I have never had a problem since I had the router, for about 4 years. Maybe I'm just lucky, cause I go to a lot of trashy websites. But then again I use Firefox.

"We have discovered that though Vista's outbound firewall is 'on' by default, all outbound connects that do not match a rule are allowed. In the default configuration, there are no outbound 'block' rules, only allow rules. In other words, even though [the Windows Firewall outbound protection is] on, it is not doing anything."
From this page