firewall not allowing connection to trusted zone

Hi Ewen,

Thanks for helping.

Vista PC:
IP 192.168.0.2
subnet: 255.255.255.0
gw: 192.168.0.1

XP PC:
IP 192.168.0.4
subnet: 255.255.255.0
gw: 192.168.0.1

router:
IP 192.168.0.1

OK, try the following;

  1. Confirm that the wifi network adaptors addresses and the routers address are within the range 192.168.0.1 - 192.168.0.4

  2. Temporarily disable all network interfaces on both PCs.

  3. Reboot

  4. On both PCs, click FIREWALL → ADVANCED → NETWORK SECURITY POLICY → GLOBAL RULES

  5. On both PCs, delete any and all rules that pertain to your defined zone.

  6. Reboot

  7. On both PCs, add 2 global rules with the following parameters;

    Action : ALLOW
    Protocol : IP
    Direction : OUT
    Description : Whatever you want, but include the direction and make it meaningful
    Source address : IP range - START:192.168.0.1 - END:192.168.0.4
    Destination address : IP range - START:192.168.0.1 - END:192.168.0.4
    IP details : IP protocol - ANY

    Action : ALLOW
    Protocol : IP
    Direction : IN
    Description : Whatever you want, but include the direction and make it meaningful
    Source address : IP range - START:192.168.0.1 - END:192.168.0.4
    Destination address : IP range - START:192.168.0.1 - END:192.168.0.4
    IP details : IP protocol - ANY

  8. Enable the Wifi adaptors on both PCs

  9. Reboot

  10. Test

  11. Report results back here.

The above rules manually replicate what the stealth wizard should have done automatically.

One thing I can’t explain from your log extract. What on earth is the 192.168.238.1 address??? Have you got a friendly neighbourhood wifi leech? :wink: Ensure your wifi router is secured and its hardware firewall is properly enabled.

Cheers,
Ewen :slight_smile:

HI ewen,

thanks for helping me with this

The router is configured corectly as 192.168.238.1 belongs to a subnet created by VMware - VMnetX.

I reinstalled the CIS again (for the 6th time) and now all of a sudden it looks like working fine. I have to test it a bit more if 6th reinstallation on Vista is the stuff it waited for… But what I find weird now is when I disabled the Defence+, then the firewall would not find any new outgoing programs and list them in the network security policy - application rules. and when I set the defence+ to safemode then it starts listing new apps, but not all of them, e.g. when I run on 192.168.0.2 pc the command telnet 192.168.0.3 22 it does not list the telnet command. And it does not list it when I telnet to internet address either.

So at this time there was no need to do the excersise you pointed out in your last post (but I keep that in my mind as an options to go for).