Disabling monitoring of a program in Tiny Fw

Discussion in 'other firewalls' started by sukarof, Apr 4, 2006.

Thread Status:
Not open for further replies.
  1. sukarof

    sukarof Registered Member

    Joined:
    Jun 22, 2004
    Posts:
    1,714
    Location:
    Stockholm Sweden
    How do I stop monitoring of a program (Firefox) in activity monitor? ie I dont want to see all the (allowed) connections that Firefox makes.
    I just cant seem find an option for it in the rule for Firefox.exe or elsewhere.
    No big deal really, but a bit annoying to have the log cluttered with allowed connection.

    Also I have a lot of entries of connection attempts every 30th second to two specific ports (port 520 and 712 from two IP-adresses) so the log window fills up fast. Tiny Firewall is the only firewall (of the firewalls that i tried) that show these two port blocks in the log (bug?)
    This has been going on for months and doesnt seem to stop, so If possible I would like to find a way to prevent those blocks from showing in the activity monitor. Is that possible?
     

    Attached Files:

    Last edited by a moderator: Apr 5, 2006
  2. isnogood

    isnogood Registered Member

    Joined:
    Sep 22, 2004
    Posts:
    83
    Location:
    France
    First check out which particular rule is triggered in each case. Most probably Firefox is a member of one apllication group (should be) like Trusted, UserTrusted, or other custom group (ex: Browsers), which allows these connections with monitoring. Then you have 2 solutions:
    1) change settings for the whole group.
    2) create a particular rule for firefox in higher priority than the default group rule priority.
    In both cases, you should define:
    protocol=TCP, direction=out, local adress/port=any, remote adress=any, remote port=80,
    action= allow,ignore, zone=dangerous zone, or any, for all users (if u have Tiny Pro).

    You can access/change the rule settings in network activity window, highlighting the particular rule and clicking on "edit" button. All the settings are there.

    Do the same for "system" process, but in this case I would check block/ignore instead of allow, supposing you are on standalone PC and running fine with these connections blocked already.

    isnogood
     
  3. AJohn

    AJohn Registered Member

    Joined:
    Sep 29, 2004
    Posts:
    935
    What version of Tiny are you using? I am using the most recent (6.5.126):

    As you see, it allows for expansion/collapsing of process connections...
     

    Attached Files:

    • AM.JPG
      AM.JPG
      File size:
      119.2 KB
      Views:
      103
  4. yahoo

    yahoo Registered Member

    Joined:
    Feb 23, 2004
    Posts:
    290
    Location:
    nowhere
    For ports 520 and 712, you can do the following.

    screen.png

    For Firefox, you need to find out the rule(s) that actually allows the connection of Firefox and change the audit method from "monitor" to "ignore".
     
  5. sukarof

    sukarof Registered Member

    Joined:
    Jun 22, 2004
    Posts:
    1,714
    Location:
    Stockholm Sweden
    Wow, thanks for the replies guys. I am a bit tired right now (been working all night) but will look at all your solutions later tonight and report back when I have done that.
    Your suggestions will certainly expand my understanding of this great software :)
    I have version 6.5.126. btw
     
  6. AJohn

    AJohn Registered Member

    Joined:
    Sep 29, 2004
    Posts:
    935
    Just noticed your in the event log, not the connections tab... ohh well :D
     
  7. sukarof

    sukarof Registered Member

    Joined:
    Jun 22, 2004
    Posts:
    1,714
    Location:
    Stockholm Sweden
    Thank you isnogood for the detailed instructions.

    I did this and it did exactly what I wanted.

    and thanks yahoo for your suggestion too, that got rid of the 520 and 712 port alerts :)

    With the help from you guys I am surely but slowly getting the grip of this advanced program, thanks again.
     
  8. isnogood

    isnogood Registered Member

    Joined:
    Sep 22, 2004
    Posts:
    83
    Location:
    France
    you are welcome :)
    In fact, it should also work even if your firefox rule had the same prioriry level as the group's rule. This is because Tiny always prioritize a particular rule over a group rule or over a general rule (for "any" application") for the same level. If you are curious, check this out. Sometimes may be useful, at least for understanding the program.

    BTW, i find it somewhat funny that Tiny regains popularity now, when it seems that its future developement becomes unsure. For long time it has been severely discredited here by opponents of "application control" and being treated bloatware by some "experts".
    Now, the security suites become more popular and many people discover that one of the best suites have been there for a long time. The fact is that it offers an outstanding level of security using default settings, out of the box. It remplaces a whole bunch of other security apps that use more memory, often feature overlap and risk creating compatibility issues. Some of its features are very difficult to find elswhere. It is also one of the fastest firewalls perhaps behind CHX-I, which has no other functionnality. And contrary to a popular belief, it may be "set and forget" program. To achieve this, an initial configuration work must be done, but I've been using it for years with rather tight security rules and never have a single popup in my everyday work, except when installing new progs. Still, it catches everything when i fiddle with different sort of malware on my test box with the same settings.

    Well, sorry for the digression out of topic, it has nothing to do with you, Sukarof. I encourage you to learn and use this program. Like Yahoo, I was tempted several times to find a replacement for Tiny, until now with no success at all :p


    isnogood.
     
Loading...
Similar Threads
  1. Overkill
    Replies:
    5
    Views:
    721
Thread Status:
Not open for further replies.