bug :firewall IDS block connexion in ESS4.2 Seven 64

i have not connexion now (automatic and interactive mode) disable it is run :

22/12/2009 19:50:02 Address temporarily blocked by active defense (IDS) 192.168.1.20:54971 192.168.1.1:53 UDP
22/12/2009 19:50:01 Address temporarily blocked by active defense (IDS) 192.168.1.20:56928 192.168.1.1:53 UDP
22/12/2009 19:50:01 Address temporarily blocked by active defense (IDS) 192.168.1.20:51064 192.168.1.1:53 UDP


~Private email removed per the TOS. (http://www.wilderssecurity.com/tos.php)~


I can't firewall :'(

-{ Quote: "sysinspector not working here gets stuck on 50% then locks up pc. works fine previous version.
edit working now deleted file re booted and ran again." }-

Yup I can confirm this. Otherwise everything appears to work ok up to now.

Running Windows 7 x64.

There must be a reason why the connection was blocked. To get detailed information about the rule that blocked the connection, enable "Log all blocked connections" option in the IDS setup, replicate the problem and eventually check the firewall log for details. Then post here the relevant portion of your firewall log here.

Log all blocked connections ->it is enale,
line IDS is here when i enable it.

i try reset settings, i re come for say.

Is the IP address 192.168.1.1 in the Trusted zone? If you don't use automatic mode, do you have the rule "Allow outgoing DNS requests" enabled?

after reset, internet work but I have :

-{ Quote: "
22/12/2009 22:41:08 Communication denied by rule 192.168.1.1:2111 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
22/12/2009 22:40:56 Communication denied by rule 192.168.1.1:2111 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
22/12/2009 22:40:50 Communication denied by rule 192.168.1.1:2111 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
22/12/2009 22:40:47 Communication denied by rule 192.168.1.1:2111 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
" }-

Ok, so if the IP address 192.168.1.20 is actually in the Trusted zone, make sure that the "Allow UPNP in the Trusted zone" option is enabled in the IDS setup. If you're not experiencing any problems, there's no need to enable UPNP.

is it ?

214382


In interactive mode

now it is other port :

-{ Quote: "22/12/2009 22:46:51 Communication denied by rule 192.168.1.1:2147 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
22/12/2009 22:46:39 Communication denied by rule 192.168.1.1:2147 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
22/12/2009 22:46:33 Communication denied by rule 192.168.1.1:2147 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System
22/12/2009 22:46:30 Communication denied by rule 192.168.1.1:2147 192.168.1.20:2869 TCP Block incoming ICSLAP (UPNP) requests System" }-

Please add 192.168.1.1 to the Trusted zone, this should eventually allow UPNP requests in the TZ providing that you have this option enabled in the IDS setup.

i don't understand, it is default settings :-\

.20 is my IP local :

214383

i add .20 with my local : 127.0.0.1?

HELP
flood interactive or automatic :

http://www.cijoint.fr/cjlink.php?file=cj200912/cijVq0wHqK.zip

thx

I have make uninstall and clean install :


-{ Quote: "
23/12/2009 05:53:10 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
23/12/2009 05:53:04 Communication denied by rule 192.168.1.20:138 192.168.1.255:138 UDP Block outgoing NETBIOS requests System
23/12/2009 05:52:27 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:22 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
23/12/2009 05:52:17 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:12 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:11 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:11 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:11 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:11 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:11 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:52:11 Packet blocked by active defense (IDS) 192.168.1.20:49204 206.220.42.147:25999 TCP
23/12/2009 05:51:58 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
23/12/2009 05:51:55 Packet blocked by active defense (IDS) 192.168.1.20:49216 89.202.157.208:80 TCP
23/12/2009 05:51:54 Packet blocked by active defense (IDS) 192.168.1.20:49213 65.55.25.60:443 TCP
23/12/2009 05:51:47 Packet blocked by active defense (IDS) 65.55.25.60:443 192.168.1.20:49213 TCP
23/12/2009 05:51:46 Packet blocked by active defense (IDS) 192.168.1.20:49216 89.202.157.208:80 TCP
23/12/2009 05:51:46 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
23/12/2009 05:51:41 Packet blocked by active defense (IDS) 192.168.1.20:49216 89.202.157.208:80 TCP
23/12/2009 05:51:40 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
23/12/2009 05:51:39 Packet blocked by active defense (IDS) 192.168.1.20:49216 89.202.157.208:80 TCP
23/12/2009 05:51:37 Packet blocked by active defense (IDS) 192.168.1.20:49216 89.202.157.208:80 TCP
23/12/2009 05:51:37 Packet blocked by active defense (IDS) 192.168.1.20:49216 89.202.157.208:80 TCP
23/12/2009 05:51:37 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
23/12/2009 05:51:37 Packet blocked by active defense (IDS) 89.202.157.208:80 192.168.1.20:49216 TCP
" }-

other :

-{ Quote: "
23/12/2009 14:39:38 Communication denied by rule 192.168.1.20:138 192.168.1.255:138 UDP Block outgoing NETBIOS requests System
23/12/2009 14:37:39 Communication denied by rule 192.168.1.20:138 192.168.1.255:138 UDP Block outgoing NETBIOS requests System
23/12/2009 14:37:22 Communication denied by rule 192.168.1.20:138 192.168.1.255:138 UDP Block outgoing NETBIOS requests System
23/12/2009 14:36:22 Communication denied by rule 192.168.1.20:138 192.168.1.255:138 UDP Block outgoing NETBIOS requests System
23/12/2009 14:35:54 Communication denied by rule ::1.:49163 ::1.:2869 TCP Block outgoing ICSLAP (UPNP) requests C:\Program Files\Windows Media Player\wmpnetwk.exe AUTORITE NT\SERVICE RÉSEAU
23/12/2009 14:35:52 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:51 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:34 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:34 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:34 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:34 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 127.0.0.1 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
23/12/2009 14:35:33 No usable rule found 192.168.1.20 224.0.0.22 IGMP System
" }-

no body can help me?

i put sysinspector :

http://www.cijoint.fr/cjlink.php?file=cj200912/cijK6kwdtl.zip

First of all, please explain what problem you're having (e.g. an application XY doesn't work because the fw blocks its communication).

all softwares, web browser,... run !
but in automatic or interactive mode, i have the log of firewall with a lot of line (when i active log al of connexion blocked)

That's pretty normal that firewall blocks/drops a lot of unwanted connections. Logging of all blocked connections is intended only for troubleshooting purposes and should be disabled otherwise. I for one would worry if my firewall didn't block anything :)