dog
April 28th, 2004, 05:45 PM
Hi Crazy M, :)
I need a little firewall help please … I’ve reference your site (http://www.gpick.com/agnisrules/index.html) and D/L the pdf. file and gone thru the sticky but I’m still confused, ??? and need some help from an Expert. Thanks in advance for your assistance
Background Info - I’m using NIS 2004 … I’ve got it configured the same way as your site suggested. I don’t have automatic program control enable, but I have never manually configured any rules, as the default rules created the first time you launch a web enabled app have always been sufficient (Permit etc,). I have three apps that NIS doesn’t seem to have default rules for (Firefox, TDS & PE). The NIS web control popup options are … Enable DNS connection, Disable, or Manually Configure. I have the connection enabled.
Problem – I ran an SOS stealth scan, and received an OPEN port result for the Source Port. (This only happens when running the scan with Firefox … the same scan using IE receives a stealth result) I wasn’t sure if the results from SOS were correct so I did a user defined scan at Shields Up and got the same results, using Firefox … IE is remains stealthed. I assume that enabling the DNS connection isn’t a proper rule, and is the cause of the result. I just started using Firefox … really like it, and wish to continue using it. But this result really worries me. The OPEN status for the Source port, is a problem isn’t it? Will a custom rule fix this issue, if so … could you post some newbie friend directions … I’m not a newbie PC user … but I don’t really understand this at all.
Also … if setting manual rules will fix the aforementioned, could I get rules for both DCS apps?
Your sites a Great Resource (Thanks for that) … but I guess the quote “All the answers to the questions you were to embarrassed to ask” … doesn’t apply to me, I’m embarrassed to ask, but I’m asking for help just the same.
Please Help. ???
Thanks Again
dog - *puppy*
I need a little firewall help please … I’ve reference your site (http://www.gpick.com/agnisrules/index.html) and D/L the pdf. file and gone thru the sticky but I’m still confused, ??? and need some help from an Expert. Thanks in advance for your assistance
Background Info - I’m using NIS 2004 … I’ve got it configured the same way as your site suggested. I don’t have automatic program control enable, but I have never manually configured any rules, as the default rules created the first time you launch a web enabled app have always been sufficient (Permit etc,). I have three apps that NIS doesn’t seem to have default rules for (Firefox, TDS & PE). The NIS web control popup options are … Enable DNS connection, Disable, or Manually Configure. I have the connection enabled.
Problem – I ran an SOS stealth scan, and received an OPEN port result for the Source Port. (This only happens when running the scan with Firefox … the same scan using IE receives a stealth result) I wasn’t sure if the results from SOS were correct so I did a user defined scan at Shields Up and got the same results, using Firefox … IE is remains stealthed. I assume that enabling the DNS connection isn’t a proper rule, and is the cause of the result. I just started using Firefox … really like it, and wish to continue using it. But this result really worries me. The OPEN status for the Source port, is a problem isn’t it? Will a custom rule fix this issue, if so … could you post some newbie friend directions … I’m not a newbie PC user … but I don’t really understand this at all.
Also … if setting manual rules will fix the aforementioned, could I get rules for both DCS apps?
Your sites a Great Resource (Thanks for that) … but I guess the quote “All the answers to the questions you were to embarrassed to ask” … doesn’t apply to me, I’m embarrassed to ask, but I’m asking for help just the same.
Please Help. ???
Thanks Again
dog - *puppy*