FireWall Question - should I block this?

Discussion in 'other firewalls' started by Mark Hastere, Jan 6, 2003.

Thread Status:
Not open for further replies.
  1. Mark Hastere

    Mark Hastere Guest

    My FireWall reports the following once or twice a day:

    NT Kernel System is trying to broadcast an ICMP Type 10
    Router Solicitation packet to 224.0.0.2 Do you want to allow this program to access the network?

    Should I block it?
     
  2. Krusty

    Krusty Registered Member

    Joined:
    Feb 15, 2002
    Posts:
    431
    Location:
    Finland
    Hello Mark

    Okay, I answer now first, guys seem to be busy.....
    Basic rules are....if some component attempts to access on the net, but you haven´t told to do that, answer is always do not let it access. Once upon time....I had the same questions myself, everytime I had to ask "should I let that access on net?" the answer was NO.

    Before I found any firewall, I surfed without any defense and guess what happened when I finally got ZoneAlarm. All my apps were going outside as soon as I dialed up on net ! Windows explorer as well M$ office....and all others....[ don´t ask why and where o_O ..]

    Do not let even firewall itself to access, if possible.
    Do not give server rights to any program if you let them access.

    be well
    *Ari*


    forgive me guys o_O
     
  3. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,838
    Location:
    New England
    Hi Mark,

    Krusty is correct. The best thing to do firewall-wise is always block first, ask questions later. ;)

    My XP system used to broadcast out periodically to the 224.0.0.2 address via the RIP Listener service, (RIP = "Routing Information Protocol"), in order to find out if there were any routing table updates. I ended up just disabling that service since it usually isn't necessary for home computers to try to "discover" new network routes in order to simply access the Internet through their ISP.

    Blocking this will not hurt. Disabling the source (RIP Listener or perhaps another service) shouldn't hurt either. Are you on a version of NT itself, or Win2000 or XP?

    Best Wishes,
    LowWaterMark
     
  4. bountyhunter

    bountyhunter Registered Member

    Joined:
    Jan 14, 2003
    Posts:
    1
    I have tryed zone alarm twice, about two years apart and it did the same thing. I am not a computer expert and it was a hassle dealing with zone alarm, I went with sygate and have been satisified with it.
     
Loading...
Thread Status:
Not open for further replies.