Re: Protecting Windows ICS gateway PC?

From: Blue Lein (blue@newbsd.socal.rr.com)
Date: 05/10/02 

From: Blue Lein <blue@newbsd.socal.rr.com>
Date: Fri, 10 May 2002 03:10:13 GMT

In article <4isC8.3440$5L4.512915@news11-gui.server.ntli.net>, Ian Burley wrote:
> Thanks for that - just one question, the comparison table on Zone Labs site
> suggests only the Pro version has ICS support. Does that mean the free
> version is now different to the one you used?

I think they just say that so people won't bug them or for people to buy the
prodah'... you can get it to work... I have Zone Alarm running one two of
my internal Windows Machines (ME & 98SE) and they can communicate just fine
with Zone Alarm - Free installed. You have to find that ADVANCED TAB (it
should be in the section where you can see your ETHERNET CARDS) and then
choose the second option (I think the middle choice) where you enter a
NAME & IP - NOT NETMASK OR ANYTHING - it should only ask for a name & IP#
and it should work just fine :)

Seriously... they just say that to get you to buy it... you can make it work
if you just take the time to realize the full potential of a FREE PRODUCT!

If you want you can also go here:

        www.jimi.dk/freebsd/NAT-Firewall.php
        www.rootprompt.net/freebsd_firewall.html

I would suggest going with www.FreeBSD.org but then again I'm partial.

If you want an easier solution you can build a Linux firewall by following
the instructions here:

        www.linuxdoc.org - In the search box type this in EXACTLY:
        
                IP-Masquerade-HOWTO

Make sure you type that in EXACTLY like that in the search box... I used that
when I first started using a Free OS as a firewall last year Sept. 2001 and
it worked! It worked just fine on Linux Redhat 7.1 and Debian Linux so...

That should work :)

Have fun and trust me... if you do go with any of the above options OTHER
than Zone Alarm... you will learn more than you thought you could learn :)

Peace,

BLouis

>
> By the way, I assume that this whole arrangement definitely rules out
> conferencing type applications running on the clients?
>
> Thanks again!
>
> Ian
>
> PS The BSD solution sounds interesting and I know a couple of people who'd
> be keen to push me in this direction, but if the easy option of getting Zone
> Alarm to work, I'll stick with that.
>
>
>
>
> "Blouis" <azul@nic.cz> wrote in message
> news:slrnadjkir.246u.azul@ocbsd.socal.rr.com...
>> On Wed, 8 May 2002 22:42:59 +0100, Ian Burley wrote:
>> > I've deployed a spare old PC as a Windows (98SE) ICS gateway machine
>> > connected via ADSL always on. It does nothing else and potentially
> serves
>> > half a dozen other networked PCs. Does it need a firewall? If so, what
> is
>> > recommended (software preferably). And what about the other PCs? All
> have up
>> > to date Sophos anti-virus installed.
>>
>> I used to run a win98SE Internet Connection Sharing gateway machine
>> for my network before I built my FreeBSD NAT/Firewall that I now
>> use today.
>>
>> I used Zone Alarm - Free Version. It should work just fine.
>>
>> If I remember correctly... I just added the Static IP addy of the
>> internal NIC cards that belonged to each of the internal computers
>> I was running. I think its the ADVANCED tab? I dont remember
>> correctly but if you install Zone Alarm look for the advance tab or
>> a tab you can click and you get a choice of adding trusted IP's...
>> choose the one that says IP (I think it was the middle choice?) and
>> then just enter a NAME for that computer and then enter the Static
>> IP (ex. 192.168.0.4) and then press okay (or enter) and it should
>> work... your machines should be able to communicate and share files
>> with each other AS WELL as communicate with the internet A-OK...
>>
>> You could also install www.FreeBSD.org on that computer and have it
>> do the exact same thing... especially if you are only going to use
>> it as a firewall/NAT... check it out and download and burn it if
>> you have a burner... if you are interested I know of a great
>> tutorial that helped me build my FreeBSD NAT/Firewall and I will
>> post it if you respond within the newsgroup as being a solution you
>> might take :)
>>
>> Otherwise, Zone Alarm Free Version should work just fine for you.
>>
>> :)
>>
>> BL
>> Southern California
>>
>> >
>> > Thanks,
>> >
>> > Ian
>> >
>> >
>> >
>> >
>
>
>

Relevant Pages

  • Re: Cant access site from internet
    ... I finally realized that it was a firewall issue after all :-and now I can access the web site perfectly from LAN and WAN. ... > Zone: Internet ... > Internal URL: http://mycomputername:50000 ... I could install WSS on it, and set up a site properly, but can't manage to access it from the internet. ...
    (microsoft.public.sharepoint.windowsservices)
  • Re: Is XP Firewall Effective?
    ... Then in the " Add the Web site to the zone" I add the sites that I visit often ... internet, those other sites will have high security settings. ... > You are in pretty good shape with the D-link and using XP ICF firewall. ...
    (microsoft.public.security)
  • Zone Labs Products Advance Program Control and OS Firewall (Behavioral Based) Technology Bypass Vuln
    ... ZoneAlarm Pro and Internet Security Suite with its a new level of protection ... is what Zone Labs calls an "OS Firewall" based on "Behavior Based Analysis" ...
    (Bugtraq)
  • [Full-disclosure] Zone Labs Products Advance Program Control and OS Firewall (Behavioral Based) Tech
    ... ZoneAlarm Pro and Internet Security Suite with its a new level of protection ... is what Zone Labs calls an "OS Firewall" based on "Behavior Based Analysis" ...
    (Full-Disclosure)
  • Re: Neosadist......
    ... Still, a firewall is nice. ... internet security, due to it having parental controls. ... Still, if you just want protection, zone alarm is free. ... But remember that security is more than just a firewall. ...
    (comp.security.firewalls)