How to exclude an IP from Trusted zone?

Discussion in 'ESET Smart Security' started by wscientist, Jan 18, 2012.

Thread Status:
Not open for further replies.
  1. wscientist

    wscientist Registered Member

    Joined:
    Apr 21, 2009
    Posts:
    4
    Hi to all,
    I have to block IP 192.168.0.5 that it's in the Trusted zone from accessing others PCs on the network. The other PCs have to be able to access each other and shares files with read/write privileges.

    I've edited the Trusted Zone on one of the PCs on the network like this:

    Address: 127.0.0.1
    Address range: 198.168.0.1 - 192.168.0.4
    Address range: 198.168.0.6 - 192.168.0.15

    IPv6 address: ::1
    IPv6 subnet: fe80:: / 64

    And in the "Addresses excluded from active protection (IDS)" I've added the same IP ranges.

    Address range: 198.168.0.1 - 192.168.0.4
    Address range: 198.168.0.6 - 192.168.0.15


    The problem is that I still can access the PC with the above configuration from the PC with IP 192.168.0.5.
    Any ideas where I'm wrong? Or there is a bug in the ESS firewall?
    I'm using ESS 5.0.95.0.

    Thanks!
     
  2. stackz

    stackz Registered Member

    Joined:
    Dec 27, 2007
    Posts:
    619
    Location:
    Sydney Australia
    Go into the Rules setup and click on the 'New' button and define a rule to block that address. Direction > Both, select the protocol, Remote > the undesired address. Give the rule a descriptive name, click OK > Apply > OK and your done. :)
     
  3. wscientist

    wscientist Registered Member

    Joined:
    Apr 21, 2009
    Posts:
    4
    I already tried this method, but it doesn't seem to work either... o_O

    PS: I've figured it out!

    1. First we should clear all automatically generated zones in "Zone and rule setup".
    2. Then we put a check mark on the "Do not display dialog with Trusted zone settings when changes in network adapter settings are detected" setting in the main settings windows.
    3. After that we should clear the check mark for "Add IPv6 addresses from local network to the Trusted zone (fe::80/64)" setting in "IDS and advanced options".
    4. Now we go back to the "Zone and rule setup" and under the Zone tab we double-click on "Trusted zone" and we add two address ranges which excludes the IP address that we want to block. For example: Lets say that 192.168.0.5 is the untrusted IP we want to block. So we add the ranges 192.168.0.0 - 192.168.0.4 and 192.168.0.6 - 192.168.0.255.
    5. Finally we add the same address ranges in the "Addresses excluded from active protection (IDS)" in order to get the file sharing between the trusted computers in the network smooth and without problems.

    This is how I managed to exclude an IP from the Trusted zone.
     
    Last edited: Jan 19, 2012
Thread Status:
Not open for further replies.