Using the Network Map I set the trust level of my wireless network to shared. After rebooting I get two trust level messages in the history log. One says Connect to a Protected Network (127.0.0.0/255.0.0.0) and the other says Connect to a Shared Network (Wireless MAC Here).
Why are there two entries and why is one shared and the other protected? I have NIS09.
The protected network looks to be your ISP and subnet mask. Your router has its own firewall settings which would make that connection protected. Your connection to the router (MAC) is shared, You can compare the MAC numbers given to the MAC on the router to be certain. Both of mine are set as protected.
delphinium wrote:
The protected network looks to be your ISP and subnet mask. Your router has its own firewall settings which would make that connection protected. Your connection to the router (MAC) is shared, You can compare the MAC numbers given to the MAC on the router to be certain. Both of mine are set as protected.
When I changed the network setting from protected to shared, why did it only change one of them to shared and leave the other as protected?
car825 -
Sorry to 'rock the boat' but this 127.0.0.0 / 255.0.0.0 connection is a internal loop in your windows network stack. It is used to allow programs to send data through your network drivers to other internal programs. This is normal and nothing is wrong; this connection will always be set to Protected; this allows Norton to scan internal network traffic and external network traffic. If you have any more questions, just ask.
Thanks Dbrisendine. Clears up my confusion as well.
dbrisendine wrote:car825 -
Sorry to 'rock the boat' but this 127.0.0.0 / 255.0.0.0 connection is a internal loop in your windows network stack. It is used to allow programs to send data through your network drivers to other internal programs. This is normal and nothing is wrong; this connection will always be set to Protected; this allows Norton to scan internal network traffic and external network traffic. If you have any more questions, just ask.
I have two laptops on my network. Before I changed the trust level to shared they were both set to protected. Now, of course, they are both set to shared. If I manually change the other laptop to restricted, will it offer the same level of protection for that laptop as I had when it was set to protected? I'm not sure of the difference between protected and restricted. There is no option to set a device to protected, only restricted.
The Trust (or Security {my own term; Trust seems to used all over the program for various things}) level of the entire Network for the machine with NIS2009 on it are as follows:
FULL TRUST
Adds the network to the Trusted list
All traffic that your computer receives from a Trusted network is filtered and allowed through firewall. However, known attacks and infections are still monitored. You should select this setting only when you are sure that the network is completely safe.
SHARED
Adds the network to the Shared list
All traffic that your computer receives from a Shared network is filtered. Only shared resources on your computer, such as files, folders, and printers are allowed. You should select this setting if you want the firewall to protect you from all traffic except those that pertain to file and printer sharing.
PROTECTED
Adds the network to the Protected list
A network is in the Protected Trust Level when it has not been classified as Trusted, Shared, or Restricted. You remain protected from known attacks and all unexpected traffic.
RESTRICTED
Adds the network to the Restricted list
The devices that are on Restricted network cannot communicate with your computer. However, you can still use the network to browse Web sites, send email messages, or transmit other communications.
If you change Laptop A to a Restricted Network level then Laptop B would no longer be able to communicate with Laptop A. Laptop A would still be able to do it's proper communications (email, surf the seb, etc.) but none of the external devices on the network would be able to communicate with Laptop A. This is the tightest control schema that the Smart Firewall offers. Restrictions can be further enhanced by creating manual rules in the Firewall's General Rule database.
Note that the Network Trust level is actually how the local machine is allowed to see and interact with the external network. In your example, setting Laptop A's level to restricted would not affect how Laptop B interacts with the network; only how B interacts with A.
Does this help any?
Why can’t I set the trust level of a specific device to protected? The choices are full trust or restricted?
Because as a default, they are set to Protected. You can not change Protected to Protected.
Maybe if you gave a detailed example of what you want to do? I get the feeling one of us is missing something here, so I'll commit to it being me in this case.
dbrisendine wrote:Because as a default, they are set to Protected. You can not change Protected to Protected.
Maybe if you gave a detailed example of what you want to do? I get the feeling one of us is missing something here, so I'll commit to it being me in this case.
I recently changed my network trust setting from protected to shared to troubleshoot some wireless connection problems. There is one other laptop on the network that I wanted to keep as protected, but when I go into the device settings the only choices are full trust, restricted, and use network trust (shared). Why isn't protected one of the choices?
You are trying to manually override the Network global setting. Norton only lets your devices Inherit the network setting, close off or open wide. You can not mix and match on the Smart Firewall as of NIS2009. Maybe possibly on later versions. Sorry.
dbrisendine wrote:You are trying to manually override the Network global setting. Norton only lets your devices Inherit the network setting, close off or open wide. You can not mix and match on the Smart Firewall as of NIS2009. Maybe possibly on later versions. Sorry.
Thanks dbrisendine. That clears it up. But let me ask you this. If I set the other laptop to restricted, how is it different from protected? I know you posted the definitions of the trust levels, but I was unable to determine the delta between the two. I get that restricted is totally closed. How is protected different from totally closed? What does it allow that restricted does not?
If you look at the General Rules (Internet Settings > Smart Firewall > Advanced Settings > General Rules), you will notice that some of the rules have the Allowed (Shared Networks). These rules are in effect only at the Shared Trust level. At the Protected level, these rules are not in effect. The other levels, Full Trust and Restricted, have hard coded network filters that come into play then. The Restricted allows only certain ports for some very light network usage. The Full Trust opens all the traffic but still monitors the traffic for attacks.
Most users will go to Protected to turn off the File and Printer sharing (along with the setting on the same page as the link for the General Rules) .
dbrisendine wrote:If you look at the General Rules (Internet Settings > Smart Firewall > Advanced Settings > General Rules), you will notice that some of the rules have the Allowed (Shared Networks). These rules are in effect only at the Shared Trust level. At the Protected level, these rules are not in effect. The other levels, Full Trust and Restricted, have hard coded network filters that come into play then. The Restricted allows only certain ports for some very light network usage. The Full Trust opens all the traffic but still monitors the traffic for attacks.
Most users will go to Protected to turn off the File and Printer sharing (along with the setting on the same page as the link for the General Rules) .
The connection to my wireless router drops more often than I like (whose doesn't, right?). Anyway, I noticed that NIS09 was blocking the upnp traffic from the router on port 1900 when the trust level is set to protected. When I switched to shared trust NIS no longer blocked the upnp traffic. I'm going to leave it shared for a while to see if it makes any difference with the wireless disconnects.
If the only difference between protected and shared is with regard to file and printer sharing, then why does protected block the upnp traffic from the router and shared doesn't?
I did not say that was the only difference. I said some users will use it to do that. You have to look at the rules to see what gets blocked in Protected mode but is allowed in Shared mode.
