ZoneAlarm Secure Wireless Router Z100G Discussion Forum
ZoneAlarm Secure Wireless Router Z100G Discussion Forum
|
|
|
For other ZoneAlarm products click here Our support personnel monitor this forum, however note this is not an official support channel - to contact support, click the button on the right. |
|
sofaware.infopop.cc SofaWare Discussion Groups ZoneAlarm Z100G Secure Wireless Router Restrict DNS|
Go
|
New
|
Find
|
Notify
|
Tools
|
Reply
|
|
Member  |
I have a little tip I'd like to share -
I have an open access point (linksys router) connected to my zone alarm. I don't mind sharing my internet access with a friend in need - but I don't want to be responsible for music sharing and other stuff. In addition to using the zonalarm's web filtering I also use opendns.com as my dns server. Whatever the z100 web filter misses (porn/adware/file sharing/ etc sites) opendns will catch and vice versa. To prevent a neighbor or whoever from bypassing the opendns - I added a couple of rules - ALLOW port 53 to the opendns servers. BLOCK all other port 53. Also will prevent a trojan/virus from redirecting DNS requests from a PC to a malicious DNS server. It's taken a while but I've pretty much got the network locked down. Upped the access to STRICT - block a lot of things in the Smart Defense tab - added rules as needed - and will allow exceptions as needed - BLOCK gambling - but added galottery.com to exceptions. If you start writing rules - be careful to not lock yourself out of the router :-) Word of advice - to make the logs more valuable - do not log regular normal traffic - ie do you really care to see every http request? |
||
|
|
Member |
Thanks Stan!
I use OpenDNS here too, but I had not thought of blocking other port 53 requests! Excellent! Jim |
|||
|
| View $GS_USERNAME's Public Profile |
| Add $GS_USERNAME to my Ignore List |
| View Recent Posts by $GS_USERNAME |
| Notify me of New Posts by $GS_USERNAME |
