English Suomi Svenska Deutsch Français Italiano Japanese

  
 
home
support issues.gif
virus-probs.gif
documentation
downloads
Online Services
contact us

home users

Product Support


F-Secure Internet Security 2009 - Back to FAQ list

 

F-Secure Internet Security 2009

 

Internet Shield Firewall

Q13. When do I have to create a new firewall service for a rule?

You may have to do this if you are creating a firewall rule for a program but there is no suitable firewall service available. To open the product, double-click the product icon at the bottom right corner of your screen.

The service defines the protocols and ports the program uses. To find out this information, consult the documentation of the program.

To create a firewall service:

  1. Click the Internet Shield tab.
  2. Click Advanced.
  3. Select Internet Shield > Firewall.
  4. Click the Services tab.
  5. Click Add. The Add New Service dialog box opens.
  6. In the Name field, enter a name for the service. Use a name that you can easily identify.
  7. From the Protocol list, select the protocol for the service:
    • ICMP (1)
    • TCP (6)
    • UDP (17)
    If you want to use another IP protocol , enter the protocol number (0-255) in the field.
  8. If the service uses the TCP or UDP protocol, define the initiator ports for the service. If the program documentation does not include the initiator ports, you can usually use any port number above 1023.
    1. Next to the Initiator ports field, click Edit.
    2. Add the ports:
      • To enter a single port, enter the port number in the Single field, for example, 1024.
      • To enter a port range, add the lowest and the highest port number of the range to the Range fields, for example, 1024-65535.
    3. Click Add To List.
    4. Repeat the steps a-c to add all necessary ports.
    5. Click OK.
  9. If the service uses the TCP or UDP protocol, define the responder ports for the service. The responder ports are usually mentioned in the program documentation.
    1. Next to the Responder ports field, click Edit.
    2. Add the ports:
      • To enter a single port, enter the port number in the Single field.
      • To enter a port range, add the lowest and the highest port of the range to the Range fields.
    3. Click Add To List.
    4. Repeat the steps a-c to add all necessary ports.
    5. Click OK.
  10. If the service uses the ICMP protocol, define the ICMP type and code for the service. Click Edit to enter the values in the Type and Code fields. The allowed values are 0-255.
  11. If you will use this service for allowing inbound traffic, you can define whether you want to allow also broadcast and multicast traffic. This kind of traffic is created by streaming programs, such as web radio or television. To allow them, select the Allow broadcasts and Allow multicasts checkboxes. Usually, you can leave these checkboxes unselected.
  12. In the Add New Service dialog box, click OK.

Your new service is now shown on the services list on the Services tab. To deny or allow the traffic that the service defines, you need to add the service to a firewall rule which allows outbound Internet connections.

<Previous question Next question>

 
Be Informed

Weblog: News from the Lab
Security Center
Upgrades and Trials

Product Upgrades
Product Trial Versions
Tools

Virus Removal Tools
Online Virus Scanner