Product Support

F-Secure Internet Security 2007 - Back to FAQ list

Internet Shield Firewall

Q12. How can I create a rule using a service that is not listed?

To create a firewall rule for playing peer-to-peer network games, or using a service such as Virtual Network Computing (VNC) remote desktop, you will need to open the service’s ports. (Please refer to the software manufacturer for the port numbers.)

For example, for VNC you will need to open the following two ports:

• TCP ports 5500, 5800, 5900, initiator port is > 1024
• UDP ports 5500, 5800, 5900, initiator port is > 1024

To open the TCP port(s):

1. Open F-secure Internet Security
2. Click on ‘Advanced…’ to open the advanced dialog.
3. On the left menu, select ‘Internet Shield’, and then ‘Firewall’.
4. On the ‘Services’ tab, click the ‘Add’ button. The Service Properties dialog will open.
5. In ‘Service description’ type VNCTCP.
6. In ‘Protocol’ select TCP (6).
7. For ‘Initiator ports’ click the ‘Edit’ button to open the Add Ports(s) dialog, then select the ‘Range’ option, and enter 1023 – 65535.
8. Click ‘Add To List’ and then ‘OK’.
9. For ‘Responder ports’ click on edit to open the Add Ports(s) dialog.
10. Select ‘Single’ and enter 5500.
11. Click ‘Add To List’.
12. Select ‘Single’ again and enter 5800.
13. Click ‘Add To List’.
14. Select ‘Single’ again and enter 5900.
15. Click ‘Add To List’, and then ‘OK’ to close the Add Port(s) dialog.
16. Click ‘OK’ to close the Service Properties dialog.

To open the UDP port, repeat the process above by using the following settings:

• In ‘Service description’ type VNCUDP.
• In ‘Protocol’ select UDP (17).
• For ‘Initiator ports’, select range, and enter 1023 – 65535.
• Add 3 ‘Responder ports’ to the list: 5500, 5800, and 5900.

To create the firewall rule:

1. Open F-Secure Internet Security.
2. Click on ‘Advanced…’ to open the advanced dialog.
3. On the left menu, select ‘Internet Shield’, and then ‘Firewall’.
4. On the firewall pane, select the ‘Rules’ tab, and click ‘Add’. The Firewall Rule Wizard appears.
5. In ‘Rule name’, type a name such as VNC.
6. For ‘Rule Type’, select ‘Allow’, and click ‘Next’.
7. Select the ‘Any IP Address’ option, and click 'Next'.
8. Select services for this rule by scrolling down the list and setting the following:
   • VNCTCP, tick the box, and then click between the computer and globe icon until a double arrow is displayed.
   • VNCUDP, tick the box, and then click between the computer and globe icon until a double arrow is displayed.
9. Click 'Next'.
10. For ‘Alert type’, select 'No alert', and click 'Next'.
11. Click 'Finish' to close the Firewall Rule Wizard.

You should now see the new rule added to the list and it should be ticked/enabled. You can now close the F-Secure windows and retry your VNC.