IFSM 430 Installing a personal firewall. Name:___________________________ First, we'll test our machine's exposure. Go to www.grc.com Click on Shields Up, then on Shields Up Click Here. What is it greeting you by (it's your machine's name)? Then click Test My Shields. Print what it reports. What is your machine's IP address? How many shared resources are exposed and what are their names? What is your machine's MAC? Then click Probe My Ports. Print what it reports. What ports and services are Open? ---------------------------------------------- Download the zonalarm.exe from my class web site. Download it into the temp folder. (You could get it from the source: www.zonelabs.com but for simplicity, use the class site). Run it; it will install itself. Accept all the default settings except the "I want to register..." and the "Inform me about important updates and news" (deselect those). Make up an email address on that window. Ignore the survey questions. Start Zonealarm from the installation (or it's in Program Files\ZoneLabs). It will iconize itself in the task bar's tray as a red and green icon. By default, all Internet access (both incoming and outgoing) is denied. You have to selectively give permission to various programs to allow them Internet access. Bring up ZoneAlarm's log file (C:\Windows\Internet Logs\ZAlog.txt) by double-clicking on it. Watch what gets added to it as you do the following. Run each of the programs in the list that follows and try to connect to somewhere. For each, a yellow pop-up window will tell you that ZoneAlarm is blocking Internet access and asks if you want to allow access. Click No for one of them and notice that you can't use the service. Click the "Remember the answer each time I use this program" box and then click Yes. The program will be added to the allowed list in ZoneAlarm's Programs tab. Netscape, IE, telnet, Ws_ftp. The printer is on the network, so printing too must be granted permission, so print a small file (for example the log file). Also start the MIX (it might be named TNT) icon on the desktop (this is an X server) and add it to the allowed list. There should be seven entries in ZoneAlarm's Programs tab, all except ZoneAlarm with checkmarks (XS.EXE will have red checks for Allow Server). See attached windowshot. Its Security settings should be Medium for both Local and Internet. In its Alerts settings, "Log alerts to a text file" and "Show the alert popup window" should both be selected ------------------------------------------------------- Go back to the grc.com site and do the Test My Shields and Probe My Ports, printing out the results. Can it determine your name? What is exposed now? What is "stealthed"? Notice that ZoneAlarm tells you what is trying to be probed. ------------------------------------------------------- In ZoneAlarm's Configure tab, make sure the "Load at Start Up" is selected, the "On top during Internet activity" is not selected, and "Yes, I want to check for updates automatically" is not selected. Click the X to minimize it into the tray. Make sure its in the tray, not the task bar.