???
Have I opened a can of worms??? I cannot find anything specific to help with my problems, so have had a go myself.
One-way SkyMedia DPT200 sat NIC, Realtek NIC 2 PCs with ICS, sat uses Tellique software with proxy server
We have 2 PCs both with Zone Alarm Pro, but can no longer afford it. Sub for host PC has just run out and read about Comodo so I am trying it out on the Host PC. I could not get access to the satellite or network initially. I don’t know anything about networks, etc., but working from the log I have created a number of Network Connection Rules which seem to work. Is what I have done safe, or have I opened a can of worms? There also seems to be some duplication which maybe could be simplified?
I have received only one Access Denied since setting up the following rules;
The Connection Rules are as follows:
0. ALLOW IP OUT FROM IP [Any] TO IP Zone: [Realtek RTL8139 Family PCI Fast Ethernet NIC #2 - Packet Scheduler Miniport] - 192.168.0.0/192.168.0.255 WHERE IPPROTO IS ANY
- ALLOW IP IN FROM IP Zone: [Realtek RTL8139 Family PCI Fast Ethernet NIC #2 - Packet Scheduler Miniport] - 192.168.0.0/192.168.0.255 TO IP [Any] WHERE IPPROTO IS ANY
- ALLOW IP OUT FROM IP 192.168.0.1 TO IP 224.0.0.22 WHERE IPPROTO IS IGMP
- ALLOW TCP or UDP IN or OUT FROM IP 192.168.0.2 TO IP RANGE:192.168.0.1 - 192.168.0.255 WHERE SOURCE PORT IS [Any] AND DESTINATION PORT IS [Any]
- ALLOW UDP IN FROM IP RANGE:203.202.140.71 - 203.202.140.72 TO IP RANGE:229.1.0.1 - 230.1.2.255 WHERE SOURCE PORT IS [Any] AND DESTINATION PORT IS IN [2513,9201,9202,9203,9205,]
- ALLOW UDP IN FROM IP RANGE:204.16.209.0 - 204.16.211.255 TO IP 203.173.210.102 WHERE SOURCE PORT IS [Any] AND DESTINATION PORT IS IN [1026,1027,]
- ALLOW IP OUT FROM IP Zone:[SkyMedia-200D (sm200DTP) Ethernet Controller - Packet Scheduler Miniport] - 10.10.10.0/10.10.10.255 TO IP RANGE:224.0.0.2 - 224.0.0.22 WHERE IPPROTO IS IGMP
Rules 7 - 12 are I think the original ones listed after Comodo is installed. I haven’t changed these.
The remaining Access Denied log is:
Description: Inbound Policy Violation (Access Denied, IP = 192.168.0.2, Port = bootp(67))
Protocol: UDP Incoming
Source: 192.168.0.2:dhcp(68)
Destination: 255.255.255.255:bootp(67)
The Satellite uses a program called Tellique “C:\Program Files\isat\tc-recv.exe” which acts as a server and uses the browser for logon and monitoring status, (Firefox / IE also have to act as servers)
It puts an icon in the Task Bar - blue when active, red when the dish loses the connection to the satellite, yellow is a problem. I started on yellow - no data would come down from the satellite, but now it is blue.
For security reasons it uses a proxy server - set up localhost:9202 for http and localhost:9203 for socks and PASV mode for FTP transfers.
Satellite requires a rec.ini file to control access to the server.
recv.ini - TelliNet+TelliCast+TelliVision: central Receiver Configuration File
additional files: see license.ini
2-4-2 27-06-2005
[recipient]
user_name=xxxxxxxx
user_key_crypt=xxxxxxxxx
[shell]
login=none
[etcp_parameters]
server_address=203.202.140.71:9201
server_address=203.202.140.72:9201
server_announcement_address=230.1.0.1:2513
authentication=1
use_icon=1
[etcp_compression]
compression_level=6
http_compression=1
port_forwarding_compression=1
socks_tcp_compression=1
socks_udp_compression=1
[http_prefetching]
use_http_prefetching=on
conditional_prefetching=more
http_prefetching_object_size=50000000
XXXXXXXXXXXXXXX POP3 MAIL SERVER XXXXXXXXXXXXXXXXXXXXXXXXXXX
[etcp_port_forwarding]
remote_address=
listen_address=127.0.0.1:111
[etcp_port_forwarding]
remote_address=
listen_address=127.0.0.1:112
Alter the remote address to reflect your own POP3 mail server
[etcp_port_forwarding]
remote_address=
listen_address=192.168.0.1:113
XXXXXXXXXXXXXXX POP3 MAIL SERVER XXXXXXXXXXXXXXXXXXXXXXXXXXX
[internal_tcp]
#not currently used looks like tunnel stuff
#new section
[etcp_connection_control_client]
connect_initial_timeout=5000
#connect_additional_timeout = 10000
=================================================
Please can anyone help - is the Internet connection safe?
Many thanks