| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 25465 | 2002-10-04 03:46:00 | more firewalls..... | tweak'e (174) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 85965 | 2002-10-04 11:03:00 | OK, those permissions are all restricted to IP address 192.168.0.2 only on my NIC (internal network.) Now obviously, if someone somehow gains access to the network through the internet, they may have a field day, but as those ports are not open to the modem, I think I am safe. The reason why I allowed FTP and HTTP ports was because I thought they would be necessary for the other PC to use FTP and HTTP clients over through the internet gateway. Am I right??? If i just use windows explorer to transfer files over the network, and I want the second PC access to the internet, what ports, etc should I have open?? Cheers. G P |
Graham Petrie (449) | ||
| 85966 | 2002-10-04 11:26:00 | do you need to have any rules for the network side? just ad 192.168.0.2 as a trusted ip. the reason i asked the question is i suspect some people are just allowing every program full access reguardless. trying to work out what ports a program uses is a pain to say the least. |
tweak'e (174) | ||
| 85967 | 2002-10-04 11:37:00 | Graham, From my understanding of TCP/IP communications you only require those ports ie 443, 80, 21 open IF you are running those services. By closing ( or better yet, having the packets dropped ) those ports it stops outsiders connecting and doesn't interfere with your access. The normal communication would be to port 21 on the internet computer and then another port ( often 30000+ ) is opened in your computer for receiving data. So, best bet is to close them. |
Gorela (901) | ||
| 85968 | 2002-10-04 11:49:00 | Gorela - I just removed the rule explicitly allowing the activity on the TCP ports. ICS still works, so I guess you're right. I will leave the rule for the UDP ports as I know if that is turned off, filesharing doesn't work. Cheers G P |
Graham Petrie (449) | ||
| 85969 | 2002-10-05 11:59:00 | I must say that I dislike ZA now. I'd disabled it from startup because I was at a LAN. But it still had it's True Vector (vsmon) still running on startup. had me confused for quite a while. |
-=JM=- (16) | ||
| 1 2 | |||||