kerio 2.1.5 block all traffic while the service is not running？ [Archive]

View Full Version : kerio 2.1.5 block all traffic while the service is not running？

gnwd

September 4th, 2005, 11:23 AM

as title.

would the svchost.exe run before kerio service?

and other products?(outpost or LnS)

I only know the sygate personal firewall pro has an option "block all traffic while the sevice is not running"

yogishree

September 4th, 2005, 01:11 PM

The question is not very clear .

Anyway , kerio 2.1.5 does not have any option of "block all traffic while the sevice is not running".

If you could let know the exact problems you are facing with kerio then maybe someone could be more helpful.

noway

September 4th, 2005, 02:08 PM

It is an option but it is not added to the registry by default and cannot
be selected using the GUI. You can add the following:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fwdrv]
"AlwaysSecure"=dword:00000001

I think when you add the above to the registry that you will not get
an IP address at boot from the DHCP server until kerio is loaded
(no traffic at all will be permitted until Kerio loaded)...after
Kerio is loaded then any rules that permit DHCP will allow it. If you don't add the above
(normal configuration) then DHCP will be permitted irregardless of kerio
rules, since DHCP stuff is done before firewall loaded. This
AlwaysSecure mode can cause side effects
see http://www.dslreports.com/forum/remark,7309170~root=kerio~mode=flat
http://www.dslreports.com/forum/remark,11299132~mode=flat
so if you use it you should always
keep a current backup of your rules handy in case they are lost.
Is this what you mean?

Kerodo

September 4th, 2005, 08:20 PM

-{ Quote: "as title.

would the svchost.exe run before kerio service?

and other products?(outpost or LnS)

I only know the sygate personal firewall pro has an option "block all traffic while the sevice is not running"" }-
Kerio 4.2 also has this option if you care to use it instead of 2.1.5...

gnwd

September 5th, 2005, 04:24 AM

-{ Quote: "The question is not very clear .

Anyway , kerio 2.1.5 does not have any option of "block all traffic while the sevice is not running".

If you could let know the exact problems you are facing with kerio then maybe someone could be more helpful." }-

I am running a win2k OS, not any service pack installed. so I want to some firewall can resist some worm or attach. such as the well-known Worm.Blaster.

gnwd

September 5th, 2005, 04:28 AM

-{ Quote: "
Is this what you mean?" }-

Yes, This is what I wanted. THX!!
you give me a detailed explanation. Thanks again! ;)