Go Premium for a chance to win a PS4. Enter to Win

x

Software Firewalls

19K

Solutions

19K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Share tech news, updates, or what's on your mind.

Sign up to Post

hi,

in moto 4g plus how to modify dial tone. please advise
0
2017 Webroot Threat Report
2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

My colleague told the client that

“It seems that the collector agent can’t connect to LDAP server DC1 & DC2.”
0
hi,

i am using google photos nd flickr to back up my photos and videos.

how to sync up photos from google photos to flickr and flickr to google photos

how to sync up my andorid moto 4g plus to sync up my photos to both google photos and flickr when i click any picture automatically.
i do not want watsup pictures to sync though how to avoid that
please advise
0
I'm having difficulty finding any decent documentation on the Windows Advanced Firewall predefined rules, and the sets of rules that are created when you select a predefined rule to enable.  Can anyone recommend a decent article, blog, or post that explains what each of these rules do?

Thanks!
0
Hello,

I am trying to run PowerSchool Gradebook from our client computers that go through a forefront tmg filtering 2010.

But for some reason i get an error message i wish to share below with you.

can anyone guide me and help me whats happening?

Launch file error message:

<?xml version="1.0" encoding="UTF-8"?>
<jnlp spec="1.0+" codebase="https://ps.askosova.org/powerschool-gradebook"; version="2.8.0.7.3">
    <information>
        <title>PowerTeacher Gradebook</title>
        <vendor>Pearson School Systems</vendor>
        <description>PowerTeacher Gradebook Application</description>
        <description kind="tooltip">PowerTeacher Gradebook</description>
        <homepage href=""/>
        <icon href="wgb_dockIcon.png"/>
        <icon href="splash.png" kind="splash"/>
        <offline-allowed/>
    </information>
    <security>
        <all-permissions/>
    </security>
    <resources arch="">
        <j2se version="1.7+" initial-heap-size="256m" max-heap-size="512m" java-vm-args="-XX:MaxPermSize=384m -XX:PermSize=256m -XX:+UseConcMarkSweepGC -XX:+CMSParallelRemarkEnabled -XX:+UseCMSInitiatingOccupancyOnly -XX:CMSInitiatingOccupancyFraction=70 -XX:+ScavengeBeforeFullGC -XX:+CMSScavengeBeforeRemark" />
        <jar href="boot.jar" />
        <jar href="lib/powerschool-gradebook.jar" main="true"/>
        <jar href="lib/powerschool-httpinvoke.jar" />
        <jar href="lib/powerschool-i18n-sdk.jar" />
        <jar …
0
Goal: Allow a user to connect to his desktop computer with RDP  ONLY after connecting vpn.

Environment:   OPNsense/Pfsense firewall
53,25,80,443 allow through firewall-
Currently can successfully rdp  with or without VPN with port forwarding - suspect traffic is hitting the fw on public int/public static  and not the desired private Ip a range allocated VPN connection.

User successfully connects to vpn, receives ip, but cant access local resources.
The client side vpn registers an IP address, the FW sees the connection- Just doesn't seem to allow traffic from vpn to local network

The IP range assigned to vpn  connections 10.  the local ip range is 192.

help
0
I have followed this guide
https://wiki.opnsense.org/manual/how-tos/sslvpn_client.html
and I have successfully  connected to and passed Auth.
*yes i did add rule to allow vpn traffic access to local resources

When connected to VPN , I can not ping my vpn gateway (10.0.0.1), I can not ping any local resources (192.168.37.X)
Outside of the the VPN I am able to make a connection.

Any help would be appreciated
ty
0
hi,

moto4g plus watsup message noise is too much. how to mute them when i type a message and send.

how to mute when i receive a message. please advise
0
I have a main office running OpenVPN on Untangle v9.4 (I know, but they don't want to spend the money to upgrade and reconnect all of the offices) The remote offices are all on different subnets, and I have no problem reaching the main office by IP address or hostname from the remote office computers. From the main office, I am unable to ping or communicate with any of the remote offices. There are no issues with the main office connecting to the internet, but I am unable to communicate with the connected networks. The OpenVPN connectivity at each office is using a Ubiquiti Edgerouter-X with the config file imported and I use my laptop to support the various offices via a software client OpenVPN connection. When I connect to the OpenVPN server at the main office using my laptop, I am able to ping, use RDP, whatever, I can even use NSLOOKUP from the DC in the main office as the server and get the IP Addresses for the systems in the remote offices. Trying to run a tracert from the cli on the DC server in the main office gives me a first hop that is the LAN address of the Untangle box, but times out on every other hop. This looks like a route issue to me, but I haven't been able to add a static route in any form that allows me to communicate with the remote networks. Help!
0
Hi,

Enviroment Checkpoint + r77.20

Every time I open a FTP SSL session, IPS drops randomly the transfer. If disabled works fine.

I´ve added  exceptions to IPS  for FTP SSL but still drops sometimes sessions.

any ideas?

Regards
0
Put Machine Learning to Work--Protect Your Clients
Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as high-speed processing of the cloud.

Hi team,

I want to start up my start up my SDN Cource on online can anybody give me some guidelines how to start and what to learn.

Thanks in advance

regards
suresh kumar k
0
I know this DMZ Forest Trust type question has been asked many times.  I read most of them and have followed many of the recommendations, however I still seem to be having trouble with this.  I'll explain what I'm trying to do...

  • I have a new, 2016 functional level, forest created in the DMZ (we'll call it edge.domain, or edge DC)
  • I have an existing corporate, 2008 functional level, forest on the LAN (we'll call it lan.domain or lan DC)
  • I have created conditional forwarding zones for each domain in each DNS.
  • All necessary ports were opened between lan DC and edge DC
  • I have established a one way non transitive trust, where the edge.domain trusts the lan.domain.
  • I have several servers in the DMZ, some windows some linux, some of these servers must authenticate to the lan.domain and currently have firewall ports opened from each of these servers to our domain controller to authenticate.
  • I would like to accomplish a few things. 1) Allow administrators to log onto the edge.domain windows servers using thier lan.domain accounts.  2) Allow other servers in the DMZ to authenticate with the edge.domain controller instead of the lan.domain controllers.  3) Tighten up firewall rules to ONLY allow edge.domain controllers access to the lan.domain controllers, nothing else comes in from the DMZ.

So here's one issue so far that I'm facing.  Although the trust looks to be …
0
For some reason, I can't change the setting of the interface e1 from 100full to auto.
I update the internet speed from 30mbps to 100mbps (Cable provider).
I am not getting 100mbps out from the pix501, if I connect the computer directly to the modem, I can get the 100mbps.

Looking around for a solution, someone recommended to set both interfaces (e0 and e1) to auto. E0 is already set to auto, but e1 I can't change it to auto. The pix 501 give me a message "int e1 can only be set 100full".
Why I can't change it?
Hope someone can help.
thanks for any suggestions to my issue....


PIX Version 6.3(5)
interface ethernet0 auto
interface ethernet1 100full
0
We currently use OpenVPN, as well as L2TP over IPSec VPN on our Linux servers (CentOS 6.x mostly). Both VPN servers are running properly. However, while each of the physical servers have several IPs assigned to them, the VPN is always able to run on one IP address only.

What we need:

A user connects to our server (either via OpenVPN or via L2TP over IPsec VPN), the server picks a random server IP address instead of just one for all users.

Basically, what we need is a server side IP address rotation for the VPN.
0
Dear All,
         Recently I configured TMG firewall as a proxy I make all the rules & every thing is working fine. If I login to TMG server and ping any public ip’s or any domain like google.com etc. I am able to ping but on client computer If provide them internet via TMG then are able to access but not able to ping any public ip or domain like google.com
         So please need your support to enable ping
       

Thanks in advance




Regards,
0
How do i allow a third party IP Address or domain.com  to come thru my firewallD for Centos 7.  I need a step by step explanation how to do this.  This is the situation, I have a site builder module installed on my control panel. When i access it, it takes me to the third party company where i do the site creation. Once the site is completed, i have to publish it to a domain on my server. The only way to do this is allow the third parties ip address access so i can publish the content to a domain on my system. Please Help
0
We are looking to confirm some settings on ClearOS 6.9.0 Professional installed on a HP ML310 with multi NIC card installed.

It is currently working fine but the customer site is moving location at the weekend and also changing WAN provider. We currently have the following setup on the ClearOS login from the console (Example IP used)

eth0 external - static - 192.168.14.2 (Link Yes)
eth1 lan - static - 10.7.1.1 (Link Yes)
eth2 external - Static - 10.2.1.3 (Link Yes)
eth3 external - Static 10.3.1.133 (Link No)
eth4 external - Static - 213.100.109.98 (Link Yes)

On eth4 which is physically connected x2 to the router - we can see the following config

Eth4
Role - External
Connection Type - Static
IP Address - 213.100.109.98
Netmask - 255.255.255.248
Gateway - 213.100.109.97

We would like to confirm that
1. The new WAN provider will supply new gateway address (router)
2. We will supply IP address on same LAN as GW address as above
3. SNM will stay the same or as advised by WAN provider

Do we need to change any other networks for the internet route to work? Everything is staying as is, we can see that Eth3 is not connected but do any of the other networks need to know about the changes to the WAN/External change.

We do not have any previous experience with ClearOS, we have used SonicWALL before and presuming that the concept is the same. The CLearOS login on the console does not show an awful lot, neither does the CLI.

Any suggestions from ClearOS…
0
hello, anyone familiar with RouterOS? I'm trying to passthrough PPTP to my VPN server. Unfortunately I'm not well versed in this particular firewall and its setup.. At the moment I have accept for 1723 and GRE setup but it also requires a NAT command as well.. Any help would be appreciated.
0
I have a group of PCs in a domain environment that we want to lock down except for a few applications.  I am using Group Policy to configure firewall exceptions to allow these applications to work.

One of the allowed applications is Outlook.  We have a CASARRAY, and currently when I try to access Outlook it says that Exchange is offline and won't let me configure a new account.

In the GPO, I have rules configured for DNS & AD Domain Services.  For Outlook I created a rules that allow access to the CASARRAY with the following:

Outbound:
"389/TCP/UDP (LDAP)
3268/TCP (LDAP GC)
88/TCP/UDP (Kerberos)
53/TCP/UDP (DNS)
135/TCP (RPC netlogon)
80/TCP
443/TCP (SSL)"

Inbound
"TCP End Point Mapper (TCP/135)
Dynamic RPC port range (6005-59530)"

I am still unable to configure Outlook.  What am I missing?  Is there a different approach I should be taking?
0
Cyber Threats to Small Businesses (Part 2)
Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

I have a Windows 7 PC that we are trying to lockdown.  I have a group policy that puts a firewall rule in place to only allow 2 IP addresses to initiate RDP connections.  We have tested this successfully from the 2 IPs while all others are denied.  When the PC reboots, they 2 IPs can no longer RDP to it.

So far, the only thing I've found that will reestablish the ability to RDP from the 2 IPs is to remove the PC from the domain and re-add it back in.

Any suggestions on the cause and possible resolution?

Thanks!
0
I had this question after viewing Wifi issue with asa 5506.

How to you return from AP>. Prompt to the asa prompt (cisco asa> )?

I sessioned into the cisco 702 AP but can't get out it
0
hello , i need allow skype on sonicwal and block all proxy and signature id 5 or 7 . Is it possible.
0
Recently we added a new TPG IPVPN Connection (MPLS Network with Hosted Firewall) to eth2 on our watchguard but cant get it to work properly (see attached picture)

For some reason i cannot ping any Sydney LAN IP Addresses (on 10.50.2.0/24 network) from QLD Office to Sydney Office.

What do i need to enable / configure on the wathguard so i can ping internal lan addresses from qld office ?

QLD Office LAN is on 10.4.26.0/24 network.
Sydney office LAN is on 10.50.2.0/24 network

From QLD office I can ping 210.10.228.14,210.10.228.13, 10.252.0.6, 10.252.0.5 OK, but if I try to ping the Watchguard LAN IP Address 10.50.2.90 or another device in the same Sydney network from QLD Office it times out. Any ideas ???

Sydney Office Watchguard Configuration is as follows:

I have 3 interfaces setup on my Watchguard x750e firewall with following parameters:

Eth0: IP: 210.10.228.14 (External) - This is connected to a ISP Managed Cisco 1900 Series Router. This is a routed subnet services TPG NBN Conneciton.
Gateway: 210.10.228.13
NetMask:255.255.255.252

Eth1: IP: 10.50.2.90 (Trusted)
Netmask: 255.255.255.0

Eth2: IP: 10.252.0.6 (External) - This is connected to a TPG NTU and is a IPVPN Connection. This also requires RIPv2 and has dynamic routing setup.
Gateway: 10.252.0.5
Netmask: 255.255.255.252
Dynamic Routing Configuration:
1. Enabled Dynamic Routing is enabled.
2. Enable RIP is enabled
Rip Configuration :
router rip
network 10.252.0.4/30
network …
0
Hello experts-exchange, can the ASA 5520 be configured for SMTP Gateway relay use?
Thank you,
Nina
0
ASUS Router RT AC3200
NETGEAR MODEM C7000-100NAS

Typically, when you bridge a modem it loses any wifi broadcasting abilities & you can no longer directly hardwire your PCs ethernet cable to it - you now must plug in directly into the router. In addition you lose the ability to use 192.168.0.1 to see your modem's GUI anymore. It's still there, I just need some kind of router permission, tweak, programming, firewall allowance, setting enabled, call it what you want, to be able to use 192.168.0.1 again. I know there's a way through the router just need help.

Any ideas?
0

Software Firewalls

19K

Solutions

19K

Contributors

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.