Product Support

F-Secure Internet Security 2009 - Back to FAQ list

Internet Shield Firewall

Q5. How can I create a rule using a service that is not listed?

You may have to create a new firewall service and rule if you start playing peer-to-peer network games, or start using a service such as Virtual Network Computing (VNC) remote desktop.

For example, for VNC you need to create two firewall services to open the following ports:

• TCP ports 5500, 5800, 5900, the initiator port is > 1024
• UDP ports 5500, 5800, 5900, the initiator port is > 1024

1. Create a service for TCP with the following details:
   1. Service description: VNCTCP
   2. Protocol: TCP (6)
   3. Initiator ports, range: 1023-65535
   4. Responder ports, single: 5500, 5800 and 5900.
2. Create a service for UDP with the following details:
   1. Enter a service description: VNCUDP
   2. Select the protocol: UDP (17)
   3. Enter initiator ports, range: 1023-65535
   4. Enter responder ports: 5500, 5800, and 5900.
3. Create a firewall rule with the following details:
   1. Enter a rule name: VNC.
   2. Select the rule type: Allow.
   3. Select the IP addresses: Any IP Address.
   4. Select services: VNCTCP and VNCUDP. Click between the computer and globe icon until a double arrow is shown.
   5. Alert type: No alert.
4. To apply the firewall rule, define VNC as allowed in Application Control:
   1. Click the Internet Shield tab.
   2. Click Advanced.
   3. Select Internet Shield > Application Control.
   4. Click the Applications tab.
   5. Click Add.
   6. Click Browse and browse for vncviewer.exe.
   7. Under Outbound (Client) connection, select Allow.
   8. Under Inbound (server) connection, select Allow.
   9. Click OK.

You should now see the new rule added to the rules list and it should be turned on. You can now close the product and retry your VNC.