Lns , I dont' Understand T_T ??

Hi

I Receveid a net send spam with Phantom 3 rules , how it's possible I have the best rules of the world for lns

Thx

 

kamui

It's probably because of the manual modifications you made and rules you imported... Send your copy of the rule-set via E-mail and i'll thoroughly Scan through it...

 

it's in the box , Bro

Thx for your support

 

Hey kamui

There is fault in “ALL” those Additional rule(S) which authorizes; they all need to be disabled or deleted and re-worked. You need to have better understanding of rule-base Software Firewalls before you attempt to add rules otherwise you’ll be doing more harm then good…

And there are at least 5 rules at the bottom of the rule-set which isn’t there, been deleted? Two are very important rules.

 

I agree with Phantom. Do not delete rules until you understand what they stand for, especially the last few rules as one blocks all other udp packets not previously authorized, another one all ICMP types not allowed by other rules, and finally the last rule which blocks any other packets not already authorized

 

Actually he was using Phant0m`` Rule-set $v3.0 and the rules that were deleted;

GRE : Allow (Disabled)
Other : Allow (Disabled)
ARP : Authorize all ARP packets. (Disabled)
ARP : Authorize all ARP packets (Enabled)
Block : All other packets (Enabled)

And the last rule which is labelled “Block : All other packets” applies to ALL (IP & Non-IP or Other IP Protocols), Look ‘n’ Stop has “BLOCK ALL” Feature coded right into the Application, so considering that even with that rule disabled or deleted it’ll still be functioning as if that rule does exist. But for number of reasons such like one, Logging purposes I wouldn’t delete that rule.

 

Thx Guy , I don't understand ,i Just only add rules "Trillian Rules and anti RiAAA anc co" and don't delete other , how could be happen , by error ,perhaps

 

oky i dlete the last rules set and I set up a new clean ph3 rules , and I have now , my 4 miss rules


And other questions , How many you can stock in lns ?? , because I have about 90

 

Hey kamui

If you didn’t manually delete the rules then something else happened, perhaps file became corrupted…

I’m not sure how many rules Look ‘n’ Stop can hold in a rule-set…

Now since you using a nice clean copy of the rule-set, try learning rule creation before adding any rules to the rule-set...

 

Using Phant0m`` Rule-set $v3.0 you shouldn’t have an issue Initiating Connections, however it’s the Initiating Connections from the remote machines which you need to configure rules for when in reference to p2p Software.

Visit http://www.wilderssecurity.com/showthread.php?t=8806

Tell me if this helps you understand rule creating little better…

 

thx Phantom

What do you think about this rules

http://www.rz.uni-frankfurt.de/~wagner/lns-rules.html

 

I found a good lns guide for french user like me
http://karibou10.free.fr/tuto/lookstop.htm

 

Actually what you see is Outdated Information from Look 'n' Stop french section of the Official website...

http://www.soft4ever.com/LooknStop/Fr/faq.htm

 

oki hx

Another questions

By defaults anti Mac spoofing and DNS-Allowed-1 are not quote in Lns , I must quote them in grenn or not

because i notice that if i quote DNS-Allowed-1 i can connect to the web , and in the other side if i unqote it I can't connect

 

Hey kamui

Read the Instructions on the Download page…

http://www.wilderssecurity.info/Phant0m.shtml

 

I read you guide but you don't answer to my questions , in lns i must quote the two rules or not

plz help, I have à big doubt

 

Hey kamui

Reason why I had posted the url is because what you ask is all there…

“Rule(S) that needs to be configured and activated.

• +Anti-MAC Spoofing • UDP-0+: BOOTP / DHCP
• DNS-Allowed-1 • UDP-0-: BOOTP / DHCP"

Yes the rules needs to be configured and then Activated [Enabled]…

 

LOL, no prob

 

thx