Hi Ewen,
Thanks for helping.
Vista PC:
IP 192.168.0.2
subnet: 255.255.255.0
gw: 192.168.0.1
XP PC:
IP 192.168.0.4
subnet: 255.255.255.0
gw: 192.168.0.1
router:
IP 192.168.0.1
Hi Ewen,
Thanks for helping.
Vista PC:
IP 192.168.0.2
subnet: 255.255.255.0
gw: 192.168.0.1
XP PC:
IP 192.168.0.4
subnet: 255.255.255.0
gw: 192.168.0.1
router:
IP 192.168.0.1
OK, try the following;
Confirm that the wifi network adaptors addresses and the routers address are within the range 192.168.0.1 - 192.168.0.4
Temporarily disable all network interfaces on both PCs.
Reboot
On both PCs, click FIREWALL → ADVANCED → NETWORK SECURITY POLICY → GLOBAL RULES
On both PCs, delete any and all rules that pertain to your defined zone.
Reboot
On both PCs, add 2 global rules with the following parameters;
Action : ALLOW
Protocol : IP
Direction : OUT
Description : Whatever you want, but include the direction and make it meaningful
Source address : IP range - START:192.168.0.1 - END:192.168.0.4
Destination address : IP range - START:192.168.0.1 - END:192.168.0.4
IP details : IP protocol - ANY
Action : ALLOW
Protocol : IP
Direction : IN
Description : Whatever you want, but include the direction and make it meaningful
Source address : IP range - START:192.168.0.1 - END:192.168.0.4
Destination address : IP range - START:192.168.0.1 - END:192.168.0.4
IP details : IP protocol - ANY
Enable the Wifi adaptors on both PCs
Reboot
Test
Report results back here.
The above rules manually replicate what the stealth wizard should have done automatically.
One thing I can’t explain from your log extract. What on earth is the 192.168.238.1 address??? Have you got a friendly neighbourhood wifi leech? Ensure your wifi router is secured and its hardware firewall is properly enabled.
Cheers,
Ewen
HI ewen,
thanks for helping me with this
The router is configured corectly as 192.168.238.1 belongs to a subnet created by VMware - VMnetX.
I reinstalled the CIS again (for the 6th time) and now all of a sudden it looks like working fine. I have to test it a bit more if 6th reinstallation on Vista is the stuff it waited for… But what I find weird now is when I disabled the Defence+, then the firewall would not find any new outgoing programs and list them in the network security policy - application rules. and when I set the defence+ to safemode then it starts listing new apps, but not all of them, e.g. when I run on 192.168.0.2 pc the command telnet 192.168.0.3 22 it does not list the telnet command. And it does not list it when I telnet to internet address either.
So at this time there was no need to do the excersise you pointed out in your last post (but I keep that in my mind as an options to go for).