Win XP Firewall?

[v1_0]

Re: Win XP Firewall?

So you are saying that if I weed thru my huge pile of usually undecipherable manuals and am lucky enough to find one for the router, I can change the router's ip addy?

And if I do, will it also change all the addys for the individual computers?

No need to do any wading! This is a product of the digital era... Just get the manual online:
http://www.linksysbycisco.com/US/en/support/BEFSR41

Even simpler: http://www.hansenonline.net/Networking/Linksys101.html

Once you change the LAN IP address (not the WAN IP address - L = local area network, W = Wide area network AKA "the internet") The client computers will should pick up the change fairly quickly. If not, the easiest thing is to do a reboot of them. [You could go into the command line and type in "ipconfig /renew" if you are comfortable working in the command line]

However, that's not as important as changing the administrative password and turning off remote admin if you have it turned on!

Edit: Upon further thinking, don't worry about your internal network IP addresses. Leave those alone, they work for you and you do have a hardware firewall after all. I'm a bit on what you might call the paranoid side... Just because nobody is out to get me dosn't mean that nobody is out to get me...

-V

 

[WizeOne]

Re: Win XP Firewall?

Ok, we are zeroing in.
I'm gonna download Zone Alarm and use it's wizard and I'm gonna leave the router alone.

If I create a password for the Aministrative user, does that mean I will have to login every time I turn the computer on?

Also, where do I find this 'remote admin' thing. I didn't see anything about it when I peeked in the 'User Accounts'.

 

[v1_0]

Re: Win XP Firewall?

Ok, we are zeroing in.
I'm gonna download Zone Alarm and use it's wizard and I'm gonna leave the router alone.

If I create a password for the Aministrative user, does that mean I will have to login every time I turn the computer on?

Also, where do I find this 'remote admin' thing. I didn't see anything about it when I peeked in the 'User Accounts'.

The password that we were talking about is for the router. You will only need to use it when you log into the router to do administrative stuff on there. By the way, the router is like a dedicated to a task (routing) computer - it has a processor, memory, etc. Not big, but enough for what it does. And it does allow you to log into it (using a web browser) and change settings involving security, actual routing (the router isn't actually being used as a true router for most home networks - but that is a different conversation and not important here). The settings you should be interested in are your security settings. Right now: the administrative password for the router, and to disable remote admin if it is turned on.

Convienently, all the settings we are interested in are on page 14 of the user guide. (Administration>Management: router password, remote administration).

Remember to remember your password! Now, if you should forget it some day - then there is a way to totally reset your router (back to how it shipped from the factory, and this also resets the administrative password to the default one).

 

[WizeOne]

Re: Win XP Firewall?

Ok, v1 0, I found the online router setup page with the provision to change the default router passwork. But I am still not clear what all you are recommending I do. Bear with me, you obviously live, eat and breathe this stuff but it has my head somewhat spinning with all the terms and acronyms in this melieu.

Please outline for me, in the order I should do it, what you are recommending I do. This would be from adding a software firewall (zone alarm) to altering things with the router, to all points and alterations in between. Please do it in an A, B, C, etc format. If there is any one part I do not grasp, then I can ask.

I will add this in case it has any bearing on future set ups. In XP firewall I specified the ip addys of two of the other computers hooked directly to the router. One of them would print and the other would not. I then turned off the firewall and both were able to print. At this point I have left XP Firewall turned off.

...and btw, I sincerely appreciate your assistance.

 

[v1_0]

Re: Win XP Firewall?

Please outline for me, in the order I should do it, what you are recommending I do.

Ok.

1. Change the administrative password on your router. This should be on page 14, but to step you through it: (a) start a command prompt on your computer. (b) run ipconfig. (c) Note your default gateway address. (d) start your web browser. (e) Enter the default gateway address into the browser address line, click go. (+) at this point your router administrative screens should come up - it should ask you for a user name password. (page 3 of the manual has the procedure) (f) Go to page 14 in the manual. (g) Change the administrative password to a password of your choice. (h) make sure the remote upgrade/remote administration is disabled.

2. Download and install zone alarm. (Do this on your master computer first. Get everything working - 'burn it in' for a week or so before changing anything else.)
a. I don't use that spy blocker tool bar.
b. I don't register/want them to inform me of products.
c. I personally don't want to be in defense net.
d. "Set up my programs" = yes, this is the wizard that will setup your programs automatically.
e. Restart your computer.

4. When the computer restarts, zone alarm should pop up a 'overview' window. (If it doesn't, go to the tray on the bottom right of your computer - in the tool bar - and click on the zone alarm icon).

5. Go to the 'firewall' section - on the left margin of the zone alarm window there should be overview/firewall/program control/alerts & logs.

6. Click on the 'zones' subsection (still left margin). On the right you should see a 'name' (given by the auto config), IP addess/site, entry type, zone.
a. If any of your PCs are in here abc.def.g.*)
recall ) - delete them. (Leave your adapter subnet
and your router in, though.)
b. Click on the "Add>>" button. You can either add a
range of ip addesses, or add a subnet. Adding the
subnet allows for growth (you add abc.def.g.1 as the
ip address, and 255.255.255.0 as the mask).
Adding a range of IP addresses is simpler: you just
type in the first ip address (abc.def.g.1) then the last
one (example: abc.def.g.100).
Give this a name - something like 'home network'.
c. Make sure that your home network is trusted and
your router (DHCP server) is trusted.

7. Apply the changes.

8. run the ipconfig again. (zone alarm may ask you about this - tell it its OK and 'remember'). Find the IP address of this computer. Go to another of your computers and open a command prompt - run 'ping abc.def.g.h' where abc.def.g.h is the ip address of your first (master) computer - that you got using the IP config command. The ping should succeed. (If you get a timeout, it didn't..., and your firewall is blocking it.)

9. If the ping works - then try to print from the computer. Zone alarm may pop up on the master computer for some print/sharing program. tell it yes, and to remember.

Let me know if something dosn't go as planned.

-V

 

[bruceb58]

Re: Win XP Firewall?

Zone Alarm or a software firewall is not necessary. If you have all your latest Windows updates and have a router, you will be fine. The router is your firewall. As long as you don't poke any holes in it to allows others through, you are fine.

Do your other computers run Vista by chance? I have had many problems getting Vista computers to print to a computer running XP.

 

[WizeOne]

Re: Win XP Firewall?

Do your other computers run Vista by chance? I have had many problems getting Vista computers to print to a computer running XP.

Only my daughter's laptop runs Vista. I think when she is here and hooked up to the wired station in her bedroom, she can print on the HP 2100 and the HP office jet 621. It is my understanding though, that many printers and other devices do not work with vista. No one ever wrote drivers for them to do so.

 

[WizeOne]

Re: Win XP Firewall?

v1-O, all is done according to your directions. I currently only have two other computers hooked directly to the router. I tried pinging both of them using the ip addy of the 'master' computer and they both timed out.

Everything shows trusted and I specified an ip range which included all the units plus a couple more just in case.

What now?

EDIT: I re-read your instructions and went back and redid the trusted zone range. I had started the range with xxx.xxx.x.xxx (first computer ip in the range) I changed it to xxx.xxx.x.a -xxx.xxx.x.abc. I then went back and pinged the 'master' from each of the other two computers and it was successful. Each of the computer printed. Along with the family network and DHCP server IP's, there are three DNS server IP's and a Loopback Adapter IP that are listed as 'Trusted'. (don't have a clue about what the last two are:redface

I guess my last question for now is when setting up Zone Alarm it said I only had a 15 day free trial???. I downloaded the free version from CNET. What do you suppose gives with that? Plus now, several hours after install I have already gotten a 14 day reminder that this is just a trial offer. Very maddening.

EDIT II: I just tried to 'reply' on an email in OE. The first attempt it just disappeared before I was finished. The second attemp allowed me to finish and hit send, but it still just went away without the usual quick transfer to the 'outbox' then ending up in sent mail. No record of it???? so I guess it did not send.

Also, how important is it for the other users, in the network, to download ZoneAlarm if they are not concerned with possible issues?

Also, Also, should I blow out Avast and use the ZoneAlarm Virus and spyware program?

Also III, seems not likely to be a coincidence that now, every time I boot, i get this box pops up that is trying to install HP Photo Gallery. You tell it no, it tells you you need the CD, then starts preparing to install anyway, and you have to close the box or boxes several time b4 it stops. This morning I evidently wasn't quick enough and it loaded an Icon in my quick launch tray.

Yesterday I deleted HP PhotoGallery from my C:\Temp directory, it was the only place I could find evidence, in a search. But like freddy krueger, it keeps showing up in the manner I described.

 

[v1_0]

Re: Win XP Firewall?

Along with the family network and DHCP server IP's, there are three DNS server IP's and a Loopback Adapter IP that are listed as 'Trusted'. (don't have a clue about what the last two are:redface

I'm going to break the post up into chunks, seems easier to respond to that way. Some of the questions will be answered in one post, others might require a chain.

DNS = Domain Name Server. This is a server (probably on your internet service provider's computer) that translates the (semi) human readable name to an numeric IP address. Example: www.yahoo.com = 69.147.76.15. You could type the IP in your browser's address line and get to yahoo...

Loopback adapter (provided by Microsoft) looks to be what allows you to share the printer... might want to leave that.

 

[v1_0]

Re: Win XP Firewall?

I guess my last question for now is when setting up Zone Alarm it said I only had a 15 day free trial???. I downloaded the free version from CNET. What do you suppose gives with that? Plus now, several hours after install I have already gotten a 14 day reminder that this is just a trial offer. Very maddening.

Ah. There's free and there's free. You have downloaded the 15 day free trial of zone alarm pro. That's different than the zone alarm free firewall (note no "pro").

Zone alarm pro has many more features than zone alarm free, but you pay for them. You can pay for it - or uninstall it in 15 days. Or you can uninstall it now. At any rate the free version ("zone alarm free firewall") can be found at: http://www.zonealarm.com/security/en-us/zonealarm-pc-security-free-firewall.htm

Call me suspicious, but it seems to me that to get the 'free' version you have to wade through a bunch of 'download the NOT free version' links so that it becomes very easy to download the NOT free version. I suppose that once its installed, some people say "what the heck" and pay up. Extra revenue, I guess.

-V

 

[v1_0]

Re: Win XP Firewall?

EDIT II: I just tried to 'reply' on an email in OE. The first attempt it just disappeared before I was finished. The second attemp allowed me to finish and hit send, but it still just went away without the usual quick transfer to the 'outbox' then ending up in sent mail. No record of it???? so I guess it did not send.

Try it with zone alarm shut down (right click on the tray icon, select shut down zone alarm). If the email goes, then the firewall is blocking OE (or something it needs).

I don't use OE, but it seems to me that it should throw an error message saying "unable to get to the mail server" or "failed sending email" or something.

Anyway, if shutting down the firewall fixes things then we need to configure zone alarm to allow OE to access the internet.
To do this, start zone alarm back up.
Get in its control panel (double click on the tray icon).
Go to the "Program Control" set of features (left margin)
Go to "Programs" sub feature (still left margin). You will now see a table containing list of programs, access, server for each program.
Find OE in the list of programs.
Go to each access/server column and make sure that its 'allowed' (green checkmark). To change one, put the mouse pointer over it and left click and select the "allow" option.
Exit the zone alarm control panel.

Now try to send the email again. If it still dosn't work, I'll need to do a bit of research.

If shutting down the firewall dosn't help, then something else is the problem...

 

[v1_0]

Re: Win XP Firewall?

Also, how important is it for the other users, in the network, to download ZoneAlarm if they are not concerned with possible issues?

Well, if they don't access the internet, or at least not to surf then they probably don't need the firewall. Of course, it won't harm things either.

 

[v1_0]

Re: Win XP Firewall?

Also, Also, should I blow out Avast and use the ZoneAlarm Virus and spyware program?

Only for the next 14 days or so...

Zone alarm free doesn't have virus/spyware free. So, if you aren't going with zone alarm pro - keep avast and your other spyware stuff.

Oh, might as well scan with both (one at a time of course) to see which one runs faster and finds more before you delete the trial (if you are going to).

-V

 

[v1_0]

Re: Win XP Firewall?

Also III, seems not likely to be a coincidence that now, every time I boot, i get this box pops up that is trying to install HP Photo Gallery. You tell it no, it tells you you need the CD, then starts preparing to install anyway, and you have to close the box or boxes several time b4 it stops. This morning I evidently wasn't quick enough and it loaded an Icon in my quick launch tray.

Yesterday I deleted HP PhotoGallery from my C:\Temp directory, it was the only place I could find evidence, in a search. But like freddy krueger, it keeps showing up in the manner I described.

This is bad behavior, certainly.
Try this: http://support.microsoft.com/default.aspx?scid=kb;en-us;290301

Install it, run it - find HP PhotoGallery and delete it.

 

[WizeOne]

Re: Win XP Firewall?

This is bad behavior, certainly.
Try this: http://support.microsoft.com/default.aspx?scid=kb;en-us;290301

Install it, run it - find HP PhotoGallery and delete it.

Yep!f It was there. Handy little utility. I saved it. I removed photogallery (it did not show up on any search after I blew away the c:\temp\hpphotogallery yesterday) and rebooted and it did not rear it's pesky little head. Thanks.

I will digest the rest of your posts shortly.

 

[WizeOne]

Re: Win XP Firewall?

Only for the next 14 days or so...

Zone alarm free doesn't have virus/spyware free. So, if you aren't going with zone alarm pro - keep avast and your other spyware stuff.

Oh, might as well scan with both (one at a time of course) to see which one runs faster and finds more before you delete the trial (if you are going to).

-V

I can't find that it says ZoneAlarmPro anywhere, but when I open the icon in the start tray, it shows two boxes, one for the firewall (turned on) and the other for the AntiVirus. The antivirus is currently turned off. I wonder if they just included that with the Free Version and it will go away after the 14 days?

 

[WizeOne]

Re: Win XP Firewall?

Well, if they don't access the internet, or at least not to surf then they probably don't need the firewall. Of course, it won't harm things either.

They use the internet but if they do not have it and suffer the results, can it affect me?

 

[WizeOne]

Re: Win XP Firewall?

Try it with zone alarm shut down (right click on the tray icon, select shut down zone alarm). If the email goes, then the firewall is blocking OE (or something it needs).

I don't use OE, but it seems to me that it should throw an error message saying "unable to get to the mail server" or "failed sending email" or something.

Anyway, if shutting down the firewall fixes things then we need to configure zone alarm to allow OE to access the internet.
To do this, start zone alarm back up.
Get in its control panel (double click on the tray icon).
Go to the "Program Control" set of features (left margin)
Go to "Programs" sub feature (still left margin). You will now see a table containing list of programs, access, server for each program.
Find OE in the list of programs.
Go to each access/server column and make sure that its 'allowed' (green checkmark). To change one, put the mouse pointer over it and left click and select the "allow" option.
Exit the zone alarm control panel.

Now try to send the email again. If it still dosn't work, I'll need to do a bit of research.

If shutting down the firewall dosn't help, then something else is the problem...

I have not had a reocurrence of that event. That was the first one I tried to reply to and subsequent replies and fresh sent emails have worked just fine. I'll keep an eye on it.

 

[v1_0]

Re: Win XP Firewall?

They use the internet but if they do not have it and suffer the results, can it affect me?

Theoretically yes. They are trusted by your master computer, "inside" your firewall. Your firewall will let them communicate however they choose to do (trusted), so once inside your network the *incoming* protection on your master wouldn't kick in.

That's a remote possibility, someone would have to "crack" into your system, figure out that you have a network (more than one computer) then drop another cracking program in on the computer to exploit windows weaknesses in the rest of the comps on your network.

It's more likely that having one of your other computers compromised would have an indirect affect on your master computer: they all share bandwith on the same internet connection. If one of your comps is doing something like sending out lots of (spam) emails, or participating in a denial of service attack - then it would be using up bandwidth and slow you down.

If it uses a lot you may get noticed by your ISP.

 

[dolluper]

Re: Win XP Firewall?

I used zone alarm for awhile and dumpped it ...too anyoying.....now they can get in and grab my rocket science files ....but maybe not since I've turned off some of the holllly MS services they include when you install any MS operating system.....by turning off alot of these bad insure services you will be much much safer esp the remote services ....hackers like them turned on