Re: ZoneAlarm Pro ICS problem
From: Peter De Jager (peterdj@mweb.co.za)Date: 09/20/02
- Next message: : "gnatbox VPN through smoothwall?"
- Previous message: : "ZA and JavaScript"
- In reply to: : "Re: ZoneAlarm Pro ICS problem"
- Next in thread: Ross McKay: "Re: ZoneAlarm Pro ICS problem"
- Reply: Ross McKay: "Re: ZoneAlarm Pro ICS problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Peter De Jager" <peterdj@mweb.co.za> Date: Fri, 20 Sep 2002 11:28:15 +0200
"Ross McKay" <rosko@zeta.NOT.THIS.BIT.org.au> wrote in message
news:kemkou88bgjcolipl9c1ieshns0gk5h58c@4ax.com...
> On Thu, 19 Sep 2002 10:36:24 +0200, "Peter De Jager"
> <peterdj@mweb.co.za> wrote:
>
> >I'm using ZA Pro 3.1.395.0 on a W2k server with ICS enabled. My problem
is
> >that clients cannot see the Internet. The local network has been added as
a
> >trusted zone (192.168.0.*) and file/print sharing works fine. I've
followed
> >the instructions on the ZA site for setting up Internet Connection
Sharing
> >(which was working before installing ZA, as required) but still no joy.
The
> >way I need it set up is: ZA installed only on the ICS server, Internet
zone
> >set at max security. Thanks for any help.
>
> I have ZAPro 3.0.133 running fine with ICS.
>
> Have it on ICS gateway with Network 192.168.0.0/255.255.255.0 and IP
> Address 127.0.0.1 trusted, configured as ICS/NAT Gateway with Local
> Address of 192.168.0.1, Internet Zone Security is High, Trusted Zone
> Security is Medium.
>
> Have it also on client PC with Network 192.168.0.0/255.255.255.0 and IP
> Address 127.0.0.1 trusted, configured as Client of ICS/NAT Gateway with
> gateway address of 192.168.0.1, Zone securities set same as gateway.
>
> Have a laptop I plug in sometimes, it runs ZA (not pro) both 2.x and 3.x
> (different OS boots) and is not set as client of ICS/NAT gateway, it
> also can access Internet via the gateway.
>
> Note that you don't *need* to have ZAPro on the client PC's for it to
> work - having ZAPro on the clients just helps prevent apps phoning home
> (and adds the moderately functional privacy features). Perhaps you might
> want to disable ZAPro on the client PC's while you debug your gateway
> configuration.
>
> >(I agree with some of the other posts that) tech support from ZoneLabs is
> >virtually non-existent. Does anyone know of a dedicated
ZoneLabs/ZoneAlarm
> >newsgroup? I searched but didn't find. Clearly if we're going to get help
it
> >will be from the community, not ZoneLabs.
>
> Other places you can try are newsgroups on Gibson Research's news
> server. NB: I'm not a Steve Gibson fan, but the newsgroups on his server
> have a lot of discussion about ZA/ZAPro. Checkout news.grc.com with your
> news reader.
>
> >Alternatively: Which other firewall should I try, specifically for using
ICS
> >as described? Thanks again.
>
> Sounds like Kerio is a good choice (many people seem to recommend it).
> --
> Ross McKay, WebAware Pty Ltd
> "I got to think less. I had thought that, actually."
> - John Cusack, "Pushing Tin"
>
Many thanks for that. It now works. It seems the only thing I didn't do was
to have localhost (127.0.0.1) added as a trusted zone. Incidentally, if the
ICS gateway (192.168.0.1) is set to "Internet Zone" it still works.
I've also installed ZA on the client now. Once I managed to see the Internet
I realised that the privacy settings are not propagated from the ICS gateway
(I thought that this would be the case). Either way, it's all working now.
Thanks for the help.
- Next message: : "gnatbox VPN through smoothwall?"
- Previous message: : "ZA and JavaScript"
- In reply to: : "Re: ZoneAlarm Pro ICS problem"
- Next in thread: Ross McKay: "Re: ZoneAlarm Pro ICS problem"
- Reply: Ross McKay: "Re: ZoneAlarm Pro ICS problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
