McAfee office 3.1 User Manual
McAfee Firewall
138
McAfee Office
Systems
Control system
The operating system performs many types of network communication
without reporting directly to the user. McAfee Firewall lets the user allow or
block different system functions explicitly. Settings may be different for each
network device, since a PC may, for example, be on an internal network as well
as having a dial-up connection to the Internet.
without reporting directly to the user. McAfee Firewall lets the user allow or
block different system functions explicitly. Settings may be different for each
network device, since a PC may, for example, be on an internal network as well
as having a dial-up connection to the Internet.
To control System settings, click on the Settings menu item and choose System.
Then choose the network device you want to configure.
Then choose the network device you want to configure.
Default settings for System activity
NetBIOS over TCP: Blocked
This will block all fileshare activity over TCP as well as UDP broadcasts. Your
system will not appear in anyone's "Network Neighborhood" and theirs will
not appear in yours. If your system is configured to support NetBIOS over
other protocols, such as IPX or NetBEUI, then filesharing may be allowed if
"non-IP protocols" are allowed (see "Other Protocols" below).
system will not appear in anyone's "Network Neighborhood" and theirs will
not appear in yours. If your system is configured to support NetBIOS over
other protocols, such as IPX or NetBEUI, then filesharing may be allowed if
"non-IP protocols" are allowed (see "Other Protocols" below).
Identification: Allowed
This service is often required when getting email and is required by most IRC
servers.
servers.
ICMP: Blocked
This protocol is often abused as a method of breaking people's network
connections (especially on IRC).
connections (especially on IRC).
ARP: Allowed
ARP is a necessary Ethernet protocol and is not known to be a threat.
DHCP: Allowed if your system uses DHCP
The program looks in your system Registry to see if one of your network
devices uses DHCP. If so, then DHCP is allowed for all devices. If not, then it
is blocked for all devices. If you have more than one network device and one
uses DHCP, you should check the DHCP setting for each device and allow
only for the device that uses (most often cable or ADSL modems and some
internal networks, not for dial-up).
devices uses DHCP. If so, then DHCP is allowed for all devices. If not, then it
is blocked for all devices. If you have more than one network device and one
uses DHCP, you should check the DHCP setting for each device and allow
only for the device that uses (most often cable or ADSL modems and some
internal networks, not for dial-up).
RIP: Blocked
Allow RIP if your adminstrator or ISP advises you to.