Where do you put a custom ICMP rules in LNS? Are they also inserted in before the +TCP rule? Do you have to specify the app as well in the ICMP rule? I see a lot of ICMP being blocked while using Utorrent and are Type 3 Code 3, Type 3 Code 13, and Type 11 Code 0. I never messed with this rules back in LNS 2.05 but now I see a lot of ICMP being blocked and thought I should make the rule now. By the way of topic, but 2.05 had max 256 connections if I remember correctly, did they improve in this 2.06 version? dja2k
I usually place ICMP rules with (above) the other ICMP rules. With v2.06 I believe you can change the number of TCP SPI connections in the registry. I dont know where though.
Hi dja2k The only ICMP rules you have to authorised to Internet are: 1- type 8 code 0 echo request outbound only 2- type 0 code 0 echo reply inbound only 3- type 11 code 0 timeout inbound only (used by TraceRoute...) All the other inbound and outbound must be blocked. No. All ICMP rules are general (for any application), not specific. The ICMP codes you see with µTorrent are normal (and blocked) type 3 code 3 : destination unreacheable type 3 code 13 : access unauthorised (filtering) type 11 code 0: timeout in are OK, out must be blocked LNS do his job and it's shows in the log. That's all. Like this: ------------------ cut here -------------------------------------- Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lnsfw] "MaxSPIEntries"=dword:00000400 -------------------cut here ------------------------------------- Select the lines between "-----" and copy. Save these lines in a texte file with notepad under the name you want. Rename this file by changing the extension .txt to .reg right click on this file choose to open ity with the registry editor: this merge these lines in the windows registry to have 1024 simultaneous connections ... Reboot. That's it.
