Concerning toKaspersky Internet Security 7.0 (all builds)
When working with the Firewall component you should remember about the following peculiarity:
if when creating a rule for application or packet filtering rule in the field Remote address define the name of the computer/host which is not in the network at the moment, then this name cannot be added. You will get the following error:
At the same time the IP-address will be added correctly.
Firewall rules do not influence Intrusion Detection System (IDS)
for the zone Local network ICMP packages are always allowed
Rules for packet filtering have a higher priority than Rules for applications
In the Maximum compatibility mode rules for applications has a higher priority than in Stealth mode
in the High speed mode rules for applications has lower priority than in the Stealth mode
Example:
Kaspersky Internet Security 7.0 is installed on your PC
network game server is started on the same PC
in rules for application any network activity is allowed for the game
Stealth mode is enabled
High speed mode is enabled
Result: clients cannot connect to the server. Set the Maximum compatibility mode and restart service of the Firewall component.
Irrespective of the selected protected level of the Firewall component working in the High speed mode with the Stealth mode enabled, all packages sent by clients to the server are not accepted, server is “silent”.
By default the Maximum compatibility mode is enabled.
If Stealth mode is disabled it is recommended to use High speed mode. In case if Stealth mode is enabled it is recommended to use High speed mode for network games, and for P2P clients to use Maximum compatibility.
Knowledge base
Product Info
System requirements
23 
2009 Jun 03 12:48
.gif)
.gif)
