BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
 ·Verizon FIOS
 ·Verizon Online DSL
| [Kerio] 4x Turn this back into a real rule based firewall!
Simple answer:
-Disable predefined network settings
-Remove all the programs in the network settings possible, and set the rest to 'ask' for all settings.
-Disable the IDS.
Now your rules control all the traffic in the firewall.
Personally I don't like how they superimposed the simple settings to take over the advanced settings, and I'm finding many of their simple/predefined settings will be highly redundant/conflicting when used in any advanced configuration. The simple settings also come first, remember that as it will make any advanced configurations useless when the simple setting is still enabled.
Personally I wish they just would have given us two options Simple(newbie), and Advanced so the people who can't stand the simple options don't even have to see it.
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed.
[text was edited by author 2003-08-29 21:26:33] |
|
mlr1m
join:2003-08-29 | are there any advantages to using the new Kerio over 2.15 and System Security Monitor?
Thanks Michael |
|
BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL
| Eh..... If you want to register the program after thirty days it does have basic web filtering if you care about it even though there is free options like proxomitron, but I don't see any real advantages.
I dub this version ZArio! 
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed. |
|
mlr1m
join:2003-08-29 | Thanks..im using Proxomitron SSM and kerio 2.15..so im covered i guess. Those together seem to use less resources anyway. Aslong as security is ok
Thanks Michael |
|
madirish
Premium
join:2003-08-04
Cleveland, OH
| reply to BlitzenZeus
Re: [Kerio] 4x Turn this back into a real rule bas
Got network security down to 5 items all set to ask.Predifined network settings-disabled. only loopback is ticked in trusted area(can't do anything else with it).IDS disabled.
I do remember in another thread that one of the developers said that loopback will be taken out of the trusted area all together.I agree with BZ that it is very IMPORTANT to read the help files with this puppy. |
|
veryDisappointed
| Well SSM is problematic on my system, so the app control part of kerio 4 is useful, other then that it sucks badly. Horrible interface.
Did you notice that to create an advanced rule from a dialog box warning is very troublesome (3 clicks compared to 1) if you want to input the remote ip address too? |
|
ahubbard
join:2001-06-22
Silver Spring, MD
| reply to BlitzenZeus
When I originally installed it, I had it import my rule set from 2.1.5. Now I've removed kpf thinking I should start from scratch since I can't get online when using it...
However, it automatically picks up my old rule set, even though I didn't import or anything. Can't figure out where it goes that information from?
Also, if I move a rule from trusted to default and I still can't get online. Can't figure out exactly which 'feature' is blocking all communications. (stop all traffic is NOT enabled) |
|
BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL
| Then this is a problem your configuration, I did exactly what I said above, and my configuration is working as it should, at least as much as this buggy version will allow.
If you don't removed the old files before you reinstall, it will pickup the old configuration. Just delete all your settings, and start over again if your not going to reinstall. If you have any more problems with your configuration start a new thread please. Remember, this is BETA quality software, and many with the simple configurations being redundant/conflicting with the advanced settings, it will cause problems. Its all in your rules(and settings)...
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed.
[text was edited by author 2003-08-31 14:56:32] |
|
ahubbard
join:2001-06-22
Silver Spring, MD | reply to BlitzenZeus
I'll start a new thread, but in »[Kerio] Release of Kerio Personal Firewall 4.0.2 someone asked if it was a final ver (non-beta) and you said yes... |
|
BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL
| Your changing the subject. I won't defend Kerio's horrible actions to call it a final release, but with the number of problems still in the software its still beta quality software. They still haven't fixed bugs I reported for RC3, and there are more new bugs since RC3. There is a reason they are not offering help on the website, even when they call it final release. They want to make money on a sub-par product, that is the only reason.
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed. |
|
Cajun Man
Let's Do the Zydeco
Premium
join:2000-12-28
Cajun Bayou
clubs:  
| reply to BlitzenZeus
Is there any chance of getting some screenshots of exactly how to do the list you made in 4.0.2? I think I figured out how to disable the IDS, and I think I disabled the predefined network settings.
But was hoping to see screenshots of all three of the tips you posted to make sure I'm doing it right.
And I've noticed one screen where I can uncheck it and it will stay unchecked until I re-boot.
Can't remember off hand, I'm in Slackware Linux right now. But will be back in Windows after a while.
I thought I'd give 4.0.2 a try, but I have a feeling I'll go back to 2.1.5. But I just wanted to see how 4 works.
--
Squeeze Dat Box T-Boy! Laissez Les Bon Temps Rouler! Join Team Helix and help find a cure. |
|
BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL
| The first image shows the programs you can't remove.
Since you want to try out 4.0.2 I suggest you really read through the entire help file. Many things have changed since 2x.
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed. |
|
Cajun Man
Let's Do the Zydeco
Premium
join:2000-12-28
Cajun Bayou
clubs:
| Ok, I'll be reading it.
What about this pic, should I have it unchecked, or does it need to be checked?
--
Squeeze Dat Box T-Boy! Laissez Les Bon Temps Rouler! Join Team Helix and help find a cure. |
|
BlitzenZeus
Burnt Out Cynic
Premium,MVM
join:2000-01-13
Beaverton, OR
·Verizon FIOS
·Verizon Online DSL
| That is the system security, and that has nothing to do with the main point in this thread. So I will not answer your question here other than the system security should be enabled.
You should start a new thread for help with general configurations if you don't understand the program after you read the help file.
--
My hourly rates:
$25 per hour.
$35 per hour if you want to watch.
$45 per hour if you want to help.
$75 per hour if you tried to fix it, and failed. |
|
Cajun Man
Let's Do the Zydeco
Premium
join:2000-12-28
Cajun Bayou
clubs:
| said by BlitzenZeus  :
That is the system security, and that has nothing to do with the main point in this thread. So I will not answer your question here other than the system security should be enabled.
You should start a new thread for help with general configurations if you don't understand the program after you read the help file.
Ok... you won't answer it, but you do anyway?  Thanks. Was just a simple yes or no which you did say yes to, although a bit differently.
I have read up on it now, and found out some more things about it. But I still like 2.1.5 better. Which I'll probably go back to when I get done testing.
--
Squeeze Dat Box T-Boy! Laissez Les Bon Temps Rouler! Join Team Helix and help find a cure. |
|
