Hi, all, In the 'enhanced rules set", the first rule is 'block TCP packets with FIN flag' and the 8th rules is 'Block incoming packets with SYN flag'. The difference is that the option 'Block incoming connections' is NOT checked in the 1st case, while checked in the 2nd case. My question is: what is the real difference if I check or uncheck the option "Block incoming connections", since the direction is already chosen as 'inbounds'?
Hi nuser There's a big difference: The rule 1 block TCP packets with the flag FIN the rule 8 block the packet with the flag SYN. If you read the LNS documentation it's stated there that only one rule must have the option to block connections checked. When you check this option this change automaticaly the masks and activ flag to SYN...
thanks, Climenole I am still a little confused. If I uncheck the 'block incoming connections" and then check the appropriate options in the "More" dialog ('mask' for all, 'SYN' for "set/clear"). Will this have a different effect? Also, I check this option and find that it does NOT change automaticaly the masks and activ flag to SYN...
Hi nuser When you check the option it sets the mask/activ to the correct combination to block packets with the SYN flag. You don't have to do it manually. If you set the rule without the option checked and the right combination the effect is the same... Keep it simple and check the option... Typical application of the "Réaumur-Sébastopol's Theorem": "Plus un informaticien est fainéant, meilleur il est, Car il connait des tas d'astuces!" "More one informatician is lazy, better it is, Because it know heaps of easy ways!
So, the "block incoming connections' is equal to "mark 'all', Set 'SYN' Seems this option is not really necessary. btw, is LNS written in VC++? An incredible file size (800K!)
Hi nuser May be the option is needed for lazzy poeples ... I guess LNS is written in C++ but you have to confirm this with Frédéric, the developper of LNS. Have fun !
Frederic You must be a code genius! btw, are you the only developer of LnS? If someday, you are tired of LnS, will this project die?
