Global rules not working

tzok · April 25, 2008, 8:19am

I’m running CFP with D+ disabled and CFP in Safe Mode on Windows XP Pro SP2. The problem is, that the global rules seems to be not working. Even though I have added rules to allow all incoming trafic where source is 192.168.0.0/24 and allow all outgoing traffic where target is 192.168.0.0/24 I still get a nag, ie. if I want to allow explorer.exe to receive UDP datagram from 192.168.0.1 and how should I treat explorer.exe.

I’ve got the same problem when I try to log onto my desktop via PPTP VPN (on h/w VPN Router), despite of the fact I’ve also added similar rule for 10.0.0.0/24 which is used in my VPN server for PPTP connections.

When I add same rules, but for explicited applications (ie. explorer.exe) it works fine.

ganda · April 25, 2008, 12:16pm

hey i have similar issue.
i have this global rule, but i still have to make application rule to connect to LAN

[attachment deleted by admin]

riggers · April 25, 2008, 2:48pm

Where you have the LAN and VPN Zone it looks like you have just put in the 1 address/subnet mask.
Try and edit them to incorporate the addresses you require.

Matty

[attachment deleted by admin]

goodbrazer · April 25, 2008, 5:17pm

It seems CFP works as expected: for every connection it checks global rules and application rules. If global rules allow connection, CFP checks rules of target application. If passed, connection is allowed silently.