Jump to content

Recommended Posts

Posted

I installed Zone Alarm on two WinXP PCs. One PC is running OK without problems.

The other one keeps on blocking outgoing traffic by svchost.exe which is trying to contact 192.168.1.1:56 which results in me not being able to access the Internet.

192.168.1.1 is our router and 192.168.1.33 is the PC with problems.

Generic Host Process for Win32 Services , which is svchost.exe is allowed in program settings, only as Internet server it is blocked, but this is the same setting as on the other PC.

Now I have put 192.168.1.1 into the trusted zone only on the problem PC and everything appears to be fine for now.

My questions: Is there any risk having the router address in the trusted zone and why has only one PC this problem even though all settings are identical on both PCs?

opalhort

Posted
I installed Zone Alarm on two WinXP PCs. One PC is running OK without problems.

The other one keeps on blocking outgoing traffic by svchost.exe which is trying to contact 192.168.1.1:56 which results in me not being able to access the Internet.

192.168.1.1 is our router and 192.168.1.33 is the PC with problems.

Generic Host Process for Win32 Services , which is svchost.exe is allowed in program settings, only as Internet server it is blocked, but this is the same setting as on the other PC.

Now I have put 192.168.1.1 into the trusted zone only on the problem PC and everything appears to be fine for now.

My questions: Is there any risk having the router address in the trusted zone and why has only one PC this problem even though all settings are identical on both PCs?

opalhort

Hi opalhort,

I never use Zonealarm but it can be the Firewall settings. May you need to open the port 56 in your Router. May you also need to define the ACL settings in the router. If you set this settings to 0.0.0.0 all IP's will be opened or you have to set the available fixed IP's manually (ACL means: Access Connection Limitation). Or some routers need to be opened for all connection instead of single!

Hope this can help you.

Posted

You need to add svchost.exe to the trusted zone and give it server permissions.

Don't open any ports on the router, it's not needed, and it opens up your network to intrusion. Just add 192.168.0.1 and your ISP's DNS servers into the trusted zone. Port 53 outbound/inbound traffic is your DNS lookups and replies.

Adding each system's Ip addresses into the trusted zone will fix the rest of the problems. To find this info go to Start/Run/Command and type ipconfig/all.

Posted (edited)
You need to add svchost.exe to the trusted zone and give it server permissions.

Don't open any ports on the router, it's not needed, and it opens up your network to intrusion. Just add 192.168.0.1 and your ISP's DNS servers into the trusted zone. Port 53 outbound/inbound traffic is your DNS lookups and replies.

Adding each system's Ip addresses into the trusted zone will fix the rest of the problems. To find this info go to Start/Run/Command and type ipconfig/all.

Thanks cdnvic,

I have no open ports on the router.

since I put 192.168.1.1 in the internet zone things improved but if I call a website the first time it still comes up with not found, then click refresh and it loads.

here are some screen shots of my ZA settings:

post-3742-1171692101_thumb.jpg

post-3742-1171692209_thumb.jpg

post-3742-1171692236_thumb.jpg

opalhort

Edited by opalhort
Posted
here are some screen shots of my ZA settings:

post-3742-1171692101_thumb.jpg

It's blocking DNS lookups on port 53, that's why it's having trouble finding websites.

Posted
It's blocking DNS lookups on port 53, that's why it's having trouble finding websites.

OK I figured that much out, but svchost has all rights except to act as an Internet server (ZA's default setting!). see the second screen shot.

How can I stop ZA to block this program?

Is it safe to allow svchost as a server in the Internet zone?

opalhort

Posted
Give it server rights everywhere.

Thanks.

Done and working OK for now. If this is safe I'm wondering why ZA blocks this program in the Internet server section as a default.

opalhort

Posted

Some malware programs will overwrite it and use it to hijack the computer but that's not ZA's problem really, it should let the antivirus deal with that.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.



×
×
  • Create New...