Outpost 2009 Free or Pro

sorry, 1 more question:

How did you know to block that IP range when I told you that my IP is 192.168.1.37?

 

It would be difficult for anyone on your LAN to make compromise against you.

What you need to ensure is that any popup for unsolicited inbound is simply blocked. Unless of course the inbound is actually known/ expected, for such as a P2P client or similar.

.


- Stem

 

It is the default range used for your IP on most home routers. The gateway is normally 192.168.1.1, and broadcasts are made over 192.168.1.255, so you block all in between


- Stem

 

OK -- have a good night Stem!

 

Block them.

- Stem

 

Hi Stem,

I just noticed that you had me set the IP blocklist from 192.168.1.2-192.168.1.254

Should it be to 192.168.1.255?

 

Hi Toby.

No. You need to allow 192.168.1.255 for broadcasts. You could block them but it can cause connection problems.



- Stem

 

OK Stem,

I should have trusted your judgement -- sorry.

Any way you can examine this latest log? I want my computer locked down solid....just want your opinion.

 

Multicast is still being allowed.

Did you change the rules for svchost as I put forward in this post? because those comms are still being allowed.

Check those rules.


- Stem

 

Yes, they are blocked

 

If you don't mind my input, please check the screenshot to compare your settings against it.

 

Hi wat0114,

Yes, this is exactly how it's set.

 

That would indicate non-enforcement of Rules.

Open OP, settings, Network rules- Global rules: select "Applied before application rules" then click "Add".In the rule windows enter the details as shown exactly.

Then OK




- Stem

 

OK done...I'll post another log.

What does non-enforcement mean...is there a bug in the software? I'll restart my computer and be right back. I know it's late there so if you want you can look at it tomorrow.

 

It means rules in place are not being used/enforced, instead they are being bypassed.


- Stem

 

OK here it is

I still have it set to rules wizard...is this ok Stem? Could this be the problem?

 

Much better.


open OP/ settings/ Application Rules and find "Searchfilterhost.exe". open the rules for that application (double click it), in the "General" tab select "Block all activity".


Clear your firewall log and post a new log in about 6 hours or so.

You should make a setting of "disable automatic rule creation" in the "ImproveNet" settings.

- Stem

 

Here's the snap shot:

 

OK Stem, can't thank you enough.

 

This is what I have it set to. I get all prompts....and have to manually accept.

 

You could change the setting to "Block most", but if you have application(s) that do need Internet access and they do not currently have rules, then they will be blocked.

It is up to you if you want to change that setting.


- Stem

 

Yeah, I ran all of my programs with the rules wizard on...I justy changed it to block most so I should be fine.

 

Sounds good.


- Stem

 

Hi Stem,

Ok here is the latest log.

 

Hi Toby,

From a security point of view, I see no current problems in your log. So all OK.

However. There are some inconsistencies in the log that show possible problems with the ability of OP to filter packets.

Example:

HopbyHop allowed, but also blocked due to no rule. I will try and find time to look into that. But is is not a problem for you to concern.



- Stem