Kerio 4

Discussion in 'other firewalls' started by Phazor, Feb 26, 2006.

Thread Status:
Not open for further replies.
  1. Phazor

    Phazor Registered Member

    Joined:
    Jun 27, 2002
    Posts:
    111
    Im trying out Kerio V4 from sunbelt.

    I keep getting a prompt from the firewall for

    Generic Host Process for Win32 Services..
    I keep denying it but it drives me nuts.
    What is it and what kind of rule do I need to make for it?

    Also set up Firefox, but when launching this program I get
    Firefox local host (127.0.0.1) port...
    Once again i click deny, firefox still works but I still get the prompt
    I created a custom rule when first installing kerio. for firefox to use.

    I used the advanced mode when I installed kerio.

    Thanks for the help
     
  2. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,779
    Location:
    Texas
    Hello Phazor,

    Sunbelt gives some good info and answers your question on Generic Host Process here.

    As for Firefox, if you are using extensions and extra themes, it will check for updated versions through a https connection periodically. You can eliminate checking for updates in the tools, options, menu at the top of the page in Firefox.

    Speaking for myself, I would allow the Generic Host Process, delete the rule you made for Firefox, and let them connect.
     
  3. Alphalutra1

    Alphalutra1 Registered Member

    Joined:
    Dec 17, 2005
    Posts:
    1,160
    Location:
    127.0.0.0/255.0.0.0
    In addition to what Ronjor said

    Sorry if I am a little vague here since I do not currently use Kerio 4.2.3
    To solve the Firefox problem
    Create a rule in the advanced rules area that does this:
    Allow
    Direction: outbound
    Protocol: TCP+UDP
    Source Port: Any
    Source IP: Any
    Remote IP: 127.0.0.1 or 127.0.0.0/255.0.0.0(subnet mask prevents ip spoofing)
    Remote Port: Any

    127.0.0.1 is just your own computer, so when a program wants to access it, it is only accessing your own computer which is perfectly alright.

    Generic Host Process for Win32 Services is svchost.exe It is a windows component that handles a wide variety of jobs for the operatin system. Configuration has to be picky since many viruses/trojans/spyware use a similar name in an attempt to get network access. See Here for details on how to set it up from Paranoid2000(the setup is for outpost, but the rules are the same)

    This should get you going on your way ;) . If you need any more help, just ask.

    Alphalutra1
     
    Last edited: Feb 26, 2006
  4. Phazor

    Phazor Registered Member

    Joined:
    Jun 27, 2002
    Posts:
    111
    I also keep getting a incoming connection alert from "Sunbelt kerio firewall 4 GUI"

    What is this and how do I handle it?
     
  5. CrazyM

    CrazyM Firewall Expert

    Joined:
    Feb 9, 2002
    Posts:
    2,428
    Location:
    BC, Canada
    Do you have any more details on the connection type?
    Older versions of Kerio required communications/connections between components (GUI/Service), could this be what you are seeing?

    Regards,

    CrazyM
     
  6. Alphalutra1

    Alphalutra1 Registered Member

    Joined:
    Dec 17, 2005
    Posts:
    1,160
    Location:
    127.0.0.0/255.0.0.0
    Allowing Loopback should handle this, in my previous post, edit the same rule to both directions instead of just outbound.

    Need any more help, just ask

    Alphalutra1
     
Thread Status:
Not open for further replies.