Craig Brooksby wrote:
> My question:  Do solutions like the above exist because in a network,
> it's easier/better to handle the security issues in one place, for
> everyone?  Or is there something *inherently superior* in the "hardware
> firewall" approach that is compelling compared to *any* firewall
> software running on a single-user desktop?

Part of the answer is that, on any workstation where worms
are a real threat (i.e., Microsoft), you definitely want
a software firewall to keep spyware and worms from
getting back out to the net.

Another part of the answer is that a stand-alone workstation
can basically work in "stealth mode", greatly reducing its
visibility from the Internet.  And you can basically
accomplish this using software firewalls.

I understand that a server environment really should have
a separate piece of hardware acting as a firewall.

Vic