ZoneAlarm Secure Wireless Router Z100G Discussion Forum
ZoneAlarm Secure Wireless Router Z100G Discussion Forum
|
|
|
For other ZoneAlarm products click here Our support personnel monitor this forum, however note this is not an official support channel - to contact support, click the button on the right. |
|
sofaware.infopop.cc SofaWare Discussion Groups ZoneAlarm Z100G Secure Wireless Router Secure e-mail requirements & high security|
Go
|
New
|
Find
|
Notify
|
Tools
|
Reply
|
|
Advanced Member |
My ISP just started requiring the use of SSL to make a connection with their e-mail servers - POP3 and SMTP. These do not use the normal POP3 and SMTP ports. Here is the kicker:
When you have the Z100G set to high security (Security Firewall) you can neither send nor receive e-mail. I am going to try a couple of things to see if I can get my e-mail working when the Z100G is set to "high". |
||
|
|
Member |
Hi KBR,
In order for me to communicate with my Citrix Server at work, I had to leave the firewall set to Medium. The difference, as far as I can see, between medium and high is the level of security of outgoing programs. in the Z100 parlance...strict as opposed to safe. Where I am running a software firewall as well-I figured it was ok to leave it at the default 'medium' setting. Perhaps you could set a rule just for your outgoing mail settings and leave your setting at high? |
|||
|
|
Advanced Member |
To make the new mail requirements of my ISP work when the Z100G is set to "high" in the firewall settings I added a security rule for each port required. TCP SSL ports for SMTP and POP3 (my ISP gave me the ports to use in my email clients). I selected "TCP" and input the port range to cover one port - the same number in both fields. The source is the named "bridge" covering all computers on the secure LAN. The destination is "WAN (internet)".
|
|||
|
|
Advanced Member |
Thanks!! I was writing my other message with the answer when you posted yours. What you recommended worked - except I needed 2 rules to make it work - one for each port.
|
|||
|
|
Advanced Member |
You can add the ports for the VPN client to the Z100G security rules. I just had to do that with the VPN to my work.
Also there are some good reasons to have most outgoing traffic blocked. If a computer inside gets infected with malware, it might stop it from infecting other computers or from 'phoning home'. Another reason is that it is easier to detect attacks originating from your network.
|
|||
|
|
Member |
Thanks, KBR. I figured as much. I only got the unit Friday and am still getting used to it, so I haven't played around with creating rules yet. But I do agree with your point about malware. I was on-call Saturday AM, and wanted to have headache free access in the event I needed it quickly. This message has been edited. Last edited by: BlueScreenBetty, |
|||
|
|
Member |
If you use Gmail for Secure Email
use these settings in the High Security Settings, otherwise if you use medium secruity this rule is not needed... --------------------------------- Source port 995 (Incoming Pop3) SSL Source your computer Destination range 64.233.160.0-64.233.191.255 (google server range addresses) ------------------- Source port 465 (Outgoing SSL) source your computer destination range(64.233.160.0-64.233.191.255) (google server range addresses) |
|||
|
| Powered by Eve Community |
 | Please Wait. Your request is being processed... |
|
sofaware.infopop.cc SofaWare Discussion Groups ZoneAlarm Z100G Secure Wireless Router Secure e-mail requirements & high security | View $GS_USERNAME's Public Profile |
| Add $GS_USERNAME to my Ignore List |
| View Recent Posts by $GS_USERNAME |
| Notify me of New Posts by $GS_USERNAME |