Global Firewall Settings

On the page Global Firewall Settings is set the main functionality of TrustPort Personal Firewall. TrustPort Personal Firewall makes possible to work in four modes that have direct influence on the safety of the computer connection with the Internet or with the local network. The firewall modes can be switched by the slider on this page. With each slide movement there is shown a name and description of the selected mode on the right side.

List and description of TrustPort Personal Firewall modes:

Mode Description
Enable all connections
Option Enable all connections makes possible all outgoing and incoming connections. Firewall will not block any connections and the computer will behave as if no firewall is installed there. This option is very dangerous and you should not select this option if you are not sure what you are doing or if it is not necessary for you.
Enable the outgoing connection
This option enables all outgoing connections and firewall rules are used only for incoming communication. This mode is relatively safe but it can not protect the computer against Trojan horse or software that sends information to the Internet and that is why it is necessary to be careful with the software you use and what e-mail attachment you open.
Use firewall rules
When there is mode Use firewall rules , the firewall starts to filter all incoming and outgoing connections according to the set rules. The rules can be set on pages Manage Rule Sets and Manage Firewall Rules . This option is safe but it depends how the filter rules are set. If the filter settings are wrong, it is possible that the computer behaves as if no firewall is installed and you should be very careful.
Deny all connections
Option Deny all connections prohibits all incoming and outgoing connections. Firewall will block all connections and the computer will behave as if it is not connected to the computer network. This option is very safe but the practical utility is only if you do not want, from some reason, any network connectivity.

The button Advanced serves for dialog window display for advanced setting of TrustPort Personal Firewall. If you are not an advanced user or you do not have the relevant knowledge of TCP/IP network, then do not adjust options in this dialog window.

Option Enable DNS resolving serves for automatic translation of domain names for firewall. TrustPort Personal Firewall needs during the operation the possibility to covert the domain names and that is way it is recommended to have this option always permitted. If you do not allow this option, you take risk that your computer would not communicate correctly in the local network or in the Internet.

Option Enable DHCP serves for permission of DHCP service. DHCP service serves for IP address allocation during computer startup or during connection to the computer network or to the Internet. If you use in your network DHCP for IP addresses allocation or you connect yourself to the Internet by a service that appoints IP address to your computer, then select this option. If you deny service DHCP, your computer will not be able to get the IP address form DHCP server and it will not be possible to get the connection. If you use connection to the local network with static IP addresses, then it is not necessary to have this option selected and you can deny it. For details about your IP addresses allocation, contact your provider of the connection or the administrator.

During the mode Use firewall rules the firewall by default attempts to establish the connection, goes through the rule set and if it does not find any convenient rule, it blocks the attempt. With help of the function Permit unknown connections you can change the default functionality in a way that all the attempts for connection that do not satisfy any rule will not be blocked but permitted. This option totally turns around the logic of the whole firewall and this has an impact on the logic of all settings status. Use this option only in case that you know exactly what you are doing and when you need to change this logic. The option Deny unknown connections sets back the default behaviour of the firewall. When you set the option Permit unknown connections , you will be alerted so as you are careful not to choose the unwanted firewall setting. Deny unknown connections, but ask Firewall will interactively ask user when unknown application will try to communicate through TCP/IP. User is allowed to create (temporary) rule for such process.

Related references

Main page