Jetico making me crazy.

Discussion in 'other firewalls' started by aigle, Feb 19, 2006.

Thread Status:
Not open for further replies.
  1. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    I'll do more if you need them, but you need to tell me what you want?
     
  2. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    ok, to take screen shots you simply hit the printscreen/sysreq on your keyboard. Then go to start/programmes/accessories/paint, in paint you click edit/then choose paste, the image should now appear in the Paint box, then click file and save as, make sure to select "save type as" choose jpeg, choose a location to save it to and then attache it here if you need to!
     
  3. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Thnks Khazars,very helpful stuff, just reinstalled ir now, no repeated popups like before but i have a new problwm, for firefox i click,handle as web browser and now firefx is not working unless i choose allow all, so wat,s wrong?

    same for IE

    I suspect initial configuration may be wrong.
     
  4. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    Use the screenshots as examples, use the last screen as your first for IE and firefox, so you simply choose allow activity, then when your browsers ask for access Jetico should pop again and then you choose the first of those last 3 screen shots I posted and click "Handle as, and choose web browser, and you'll probably be asked again to confirm this action!

    Also check the process attack table and right click the IE and firefox rules and change them to accept, you can also do the same for the ask user table and make sure thay are set to handle as and set to web browser!

    You might be best to go into the ask user table and right click and delete all the IE and firefox rules and then try again?
     
  5. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    From this window there are 3 options, which one I should choose, as I told my Pc is not connected to any network and I use dial up with proxy serevr. I choosed only first option.
     

    Attached Files:

    Last edited by a moderator: Feb 22, 2006
  6. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    How i can access process attack table and ask user table.
     
  7. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    I think the choice should be handle as system file here rather than application trusted zone. Am I right?
     
  8. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    For your screen shot you simply accept Jeticos selection for that the trusted zone and the next one for the untrusted zone! Yes you could accept it as system application but I think putting it as trusted application means the rule will be in the trusted zone!

    When you double click the Jetico icon on your status bar this will open up Jetico and you can navigate to the ask user table and any other table! In my screen shot this is in ask user table, and I have opened up the options tab! Note I have two optimal protections listed with the bottom one selected, this is a Jetico ruleset I saved and imported to use after I reinstalled Windows Xp last week!

    To save your Jetico rule set, click file and save as, give the ruleset a name, I choose Jetico 2006 and then save it to a safe location and back it up to floppy or cd! To import and use the ruleset, go to file, open and navigate to the c:\program files\jetico flder were you should copy your jetico rulset after a new install and then open the ruleset to import.

    Then go to options and tick the bottom one of the optimal protections as you'll now have two and make sure to tick all the boxes to save it!
     

    Attached Files:

    • Jet6.JPG
      Jet6.JPG
      File size:
      136.9 KB
      Views:
      4,913
    Last edited by a moderator: Feb 22, 2006
  9. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Infact in spite of all my efforts I am not able to use it. In optimal mode it blocks all in and out bound traffic, I am surprised, last time it was not so. Even I uninstalled and reinstalled it. It,s so strange, last time my problem was only pop ups, this time no pop ups but it will not allow ant traffic, can,t update anything and can,t browse.

    I will show you my set up. This one is my trusted zone configuration, I don,t know much about these set ups, these option came by default and I Just accepted and clicked next.
     

    Attached Files:

    • J1.JPG
      J1.JPG
      File size:
      54.3 KB
      Views:
      4,843
    Last edited by a moderator: Feb 22, 2006
  10. Nuri

    Nuri Registered Member

    Joined:
    Jun 15, 2005
    Posts:
    7
  11. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    When you first install Jetico you should accept the defaults which jetico picks, as it automatically configures your Trusted and Untrusted zones!

    In your screen shot from post 30 you have it set to single IP address. In post 34 you have it set to Network address. I think it should be set to single IP address.


    Ok, I have checked the wizard, I think now you have not set and saved optimal protecion!?

    Setting Jetico to optimal protection should not be a problem either, just make sure you have checked the optimal protection box and then make sure all the boxes are ticked to save changes automatically and apply changes automatically. See my screen shot from post 33!


    If you have not saved optimal protection, when you rreboot Jetico is not set to any ruleset, so I would imagine it's just blocking all, this happened to me too when I loaded up my saved ruleset and I forgot to save it automatically and I never checked the optimal protection button!


    See if this helps!
     
  12. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Ok,I uninstalled it, did a system restore and reinstalled. I put trusted zone with single IP address, and put for optimal protection with auto save and auto apply. Firefox is set to be trested as web browser in ASK USER TABLE and is set to accept in PROCESS ATTACK TABLE, but still it is blocking every thing on my system from accessing the intenet.

    Is there any official forum also? I don,t know, first time ahen I used it, this type of problem never happened.
     

    Attached Files:

    • jjj.JPG
      jjj.JPG
      File size:
      108.7 KB
      Views:
      4,785
    Last edited by a moderator: Feb 23, 2006
  13. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    change it from single IP address to Network address for both the trusted and the untrusted, you had it right the first time, my mistake! Go to start/programmes/jetico/configuration wizard to reset the above and then save and try it!

    In my example you can see the light bulbs in the table screen shot, so you'll know when it's working when the light bulbs are on!
     
    Last edited: Feb 22, 2006
  14. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    So sorry to bother you again and again, I tried both ways, in either way, I fcae same problem. Even I rebooted just thinkibg that it is not able to save settings automatically( although I have already made it to save settings automatically). It is stopping all the traffic in optimal mode.
     
  15. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    You must be doing something wrong here, because you don't want to be using either Deny all or allow all as one is as bad as the other!

    the best thing to do would be to uninstall Jetico and reinstall it, but make sure you remove it all as some features may be left on!

    double click jetico firewall and select allow all and save!

    go to add/remove and uninstall Jetico.

    If your confident editing the registry do this!

    Go to start/run and type regedit in the box and hit enter!

    Open the Hkey currrent User\ click software\Jetico and right click it and delete the Jetico folder!

    Then go to the Hkey local Machine\software\jetico \right click and delete it!

    Go to start/search/ for all files and folders/click search all files and folders/click more options from the drop down /and click the boxes for search system folders/ search subfolders/search hidden files. Now search for Jetico and delete all instances of Jetico!


    Reboot your computer!


    Reinstall jetico. Accept the default settings when Jetico wizard runs. When Jetico is installed, double click it from the status bar to open Jetico, go to options/general/ click the optimal box and check the boxes to save automatically, save default policy and apply settings and exit!

    Now see if it works!
     
  16. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    That,s lot of job, but I wil try it. I am not aware much about registry, so before I delete some from it, I want to make a backup of registry but I am not aware how to make a backup.
     
  17. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
  18. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    I did all as you advised. I ran for few minutes and then same problem was there. So I stopped all of my active security software and disabled there loading at start up along with some other utilities. Then reintroduced all programmes one by one, rebooting each time. Finally just luckily I found it was conflict with a dial up monitor software( DU Traffic) which I was using. This software is freeware but it is not well known. However I like it and it is useful for me. I did not want it to connect to internet, so I put it as Application blocked zone( as I do when I use my Norton firewall). Now as soon as I go to internet, this software is running and at the same time Jetico will block all traffic. So there were only 2 options, either I shut down this software or put it as Application Trusted zone/ allow connection etc. ( that I did and it solved the problem).

    Now question is that if some programme is runing that is it the list of Application blocked zone, why Jetico is blocking all the traffic instead of blocking just that programme and letting other traffic to run smoothy?

    BTW there is another interesting post made by me about this software( DU Traffic).
    https://www.wilderssecurity.com/showthread.php?t=121458


    And thanks for all your help so far. It was really great. Just I will ask one more unrelated question how I can cut my desktop sapshots in small size just to show the required area only.
     
  19. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    I really don't know, just shows you what happens when two programes don't get on: War!

    Glad you got it sorted out!

    Jetico can monitor your activity anyway, this is probably why it conflicted.

    another programme which can do this anf doesn't conflict is Packetyzer from Network chemistry!
     
  20. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Thanks, infact my main aim from this programme is to just monitor internet time and bill on log in basis. Willl continue more discussion on Jetico as I use it. thanks a lot.
     
  21. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Few questions,

    1- Just my feeling that Jetico is making the system a bit slow, did you notice this?

    2- Another thing if you put anything in blocked application list, Jetico blocks all the traffic, so you can,t block anything practically?

    3- It does not accept even windows proceses to be treated as system process9 only accept as allow connection or treat as trusted), and if you accept windows process as trusted as you mentioned in post 24 and 23, you are loosing all you security, that means any malware in windows process can do anything and jetico will akllow( imagine any virus and explorer.exe wants to make connection to internet!).
     
  22. manzz

    manzz Registered Member

    Joined:
    Oct 6, 2005
    Posts:
    55
    There is some confusion to new users of Jetico....one of the main problems is the way Jetico works...To try to explain....
    Firewalls such as Outpost (and many others) give you the option to block an application, you can for example place "csrss.exe" into the blocked zone, and all internet activity will continue, but the fact is that the firewall is allowing "csrss.exe" (and others) to have net access (loopback) otherwise you would simply not be able to gain internet access. Other examples of windows pgms that require net access (not connections, just access to the loopback (localhost)) are "csrss.exe", "services.exe", "lsass.exe", "winlogon.exe", "userinit.exe" and "explorer.exe". If any of these are completely blocked, then you will not gain internet access. Jetico firewall,.. when you place a pgm into the blocked zone it will completely block that app, this then may lead to no internet access at all.
    Going on to the problem of "aigle"
    This is more that likely due to norton firewall allowing this app "loopback". Jetico will block everything (and the app probably requires loopback for your connections). So remove this app from the blocked zone, and allow "net access" but block "connections".
     
  23. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    Yes Manzz, and also make sure Svchost.exe is allowed as this will definetly block internet access! Best to put the system applications into either the trusted zone, or make Jetico allow activity!
     
  24. khazars

    khazars Registered Member

    Joined:
    Jun 8, 2005
    Posts:
    124
    Location:
    Glasgow, Scotland
    Blocked zone I think should only be used for blocking Trojans by port and TCP/IP. I have taken basic rules for Kerio 2.1.5 and adapted them and put them into the blocked zone!
     
  25. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    So how I can make my settings for this, can u please explain more. Will be happy if u can post it with picture.

    Another problem with Jetico is that it does not accept even windows proceses to be treated as system process, it only accepts as allow connection or treat as trusted), and if i accept windows process as trusted as mentioned in post 24 and 23, I suspect I am loosing my security, that means any malware in windows process can do anything and jetico will allow( imagine any virus comes to your system and explorer.exe wants to make connection to internet that it does not do normally but as u put it in trusted zone, so Jetico will allow it).

    I will be happy if anybody can post his rules for Jetico that can be used for any beginner like me.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.