I just discovered that Windows 2000 and XP have a built-in packet filter (under Local Security Policy -> IP Security Policies). Anyone use this?...
What does the Connection's Remote IP being set to "Packet src" mean? Does that mean that an incoming TCP packet to port 113 will only be allowed...
Here is my current ARP rule, the one that works. The other rule that I tried (which didn't work) had the Source MAC equal to the MAC of my...
Here's another question... Each filter has a Conditions tab where it lets you specify a Table Type (TCP, UDP, or ICMP), Direction (incoming or...
Thanks again, Stem. Oops, I was wrong about that... I was on a different computer when I typed that message. My rule is set up to allow ARP...
I should allow ARP from any computer on my network? Right now I have the rule set up to allow ARP only from my router's MAC address. OK... if...
The site is back up! Now where is Stefan?
When you install CHX 3.0, it gets put into a folder called "Third Brigade". But on the Third Brigade web site I didn't see any link to download CHX.
What happened to Stefan? And www.idrci.net is still down. Is that a coincidence or something else?
But each computer will receive ARP packets only from the router, right? They will never receive legitimate ARP packets from any other computer?...
Now I have a few more questions... - My router sends me ARP packets, so I have a filter to allow those. Is it OK for me to allow only ARP...
For the question about what to use to test your firewall, you mention some online tests. What if you want to test a firewall on your PC, but you...
So I can get more than one ARP reply to an ARP request? But don't I only care about one of them, which would be solicited anyway? OK. I've...
Thanks everyone, the recent replies and that interactive demo were very helpful. Let me see if I've got this straight now... If you have no...
Thanks for the replies, everyone, I appreciate it. I have not yet digested the information in the latest replies, as my job has gotten really...
I think I understand the Deny, Accept, Force Allow stuff. It's how the state inspection engine works that is confusing. stem: in your post at...
Can anyone answer a question about the stateful inspection engine? I'm finding this to be really confusing. Here's what the online manual says:...
stem: OK, looks like those rules were defined incorrectly, but have the correct descriptions. Based on the descriptions, it has rules to allow...
I'm comparing the filters that I got from vampiric_crow with the Workstation sample that you can download from...
So far it seems to be working well, but I'm just doing web surfing on this computer. I like CHX because it doesn't use much memory (from what I...
stem: Thanks for the help! Now I can establish a wireless connection in just a few seconds, like normal! vampiric_crow: I read those 2 links...
So it sounds like I want "Masked IP with IP=192.168.1.1 and Mask=255.255.255.0" for both the Packet Source and Packet Destination. But if that...
Yes, 192.168.1.35 is what the router usually gives my laptop. But the router isn't guaranteed to always give that IP, right? So shouldn't I use...
OK, I tried the 192.168.1.0/192.168.1.255 again and still couldn't get connected after several minutes. Here's a capture of that rule, and you...
OK, I set the IP to 192.168.1.0 and the Mask to 192.168.1.255. That ended up being worse than the 255.255.255.255/255.255.255.255 setting,...
Separate names with a comma.
