I'm wondering if all rules setup for a home network e.g. (WLAN 192.168.1.xxx with a specific mac-address) are still valid when e.g.
1- the laptop is coupled via WLAN to another home / public network.
2 -the laptop is coupled via LAN-cable to another / the same home network.
In case "not valid" how to operate the Settings / Change existing Rules / LAN?
current settings mention:
LAN 1 : fe80::c15a:f337:dd5c:366b/128
LAN 2: : 192.168.1.0/24
LAN local v6 : ff80::/64
(have only one LAN-cable connected at the moment)
vistafirewallcontrol.freeforums.org
VistaFirewallControl (Windows7 and Vista firewall) support forum
| Welcome | ||
|---|---|---|
| Welcome to vistafirewallcontrol You are currently viewing our boards as a guest, which gives you limited access to view most discussions and access our other features. By joining our free community, you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content, and access many other special features. In addition, registered members also see less advertisements. Registration is fast, simple, and absolutely free, so please, join our community today! |
||
Rules valid over different networks
3 posts
• Page 1 of 1
Rules valid over different networks
by PietO » Tue Jan 03, 2012 9:45 pm
- PietO
- Posts: 26
- Joined: Wed Mar 02, 2011 12:09 pm
Re: Rules valid over different networks
by VistaFirewallControl » Wed Jan 04, 2012 9:57 am
>I'm wondering if all rules setup for a home network e.g. (WLAN 192.168.1.xxx with a specific mac-address) are still valid when e.g.
MAC addresses are beyond the W7FC responsibility, W7FC operates with IP (v4 and v6) addresses only. So the rules are valid till the IP addresses are valid.
>1- the laptop is coupled via WLAN to another home / public network.
2 -the laptop is coupled via LAN-cable to another / the same home network.
If the laptop is (dynamically) assigned with IP address by the same router, there is no reason to change any rule. All the IPs assigned by the same router belongs to the same subnetwork always.
So all “LAN” based rules are valid (till you do not have per-IP, PC specific rules)
The behavior on a different network depends on the router’s subnetwork.
If the subnetwork address range is the same (e.g 192.168.1.0/24) there is nothing to change.
If the subnetwork is different (e.g. 192.168.0.0/24) you have to adjust “LAN” based rules.
Using Settings/LAN you can smartly arrange all the rules with LAN prefix at once accordingly to the new subnetwork address range.
>In case "not valid" how to operate the Settings / Change existing Rules / LAN?
current settings mention:
Pressing the button W7FC lists all the adapters (including virtual ones) on the current PC.
You can edit the list if required. However, typically, if you treat all the local computers as safe regardless of the adapter the local computer is connected via, you can keep the list intact.
Pressing OK on the list confirms W7FC to change all the rules with LAN prefix (in all the zones and applications) to the new set of new listed adapters.
So, one button click is enough to migrate to another network.
>LAN 1 : fe80::c15a:f337:dd5c:366b/128
Local link address, if you do not have IPv6 connectivity you may not worry about that at all
> LAN 2: : 192.168.1.0/24
The main home subnetwork.
> LAN local v6 : ff80::/64
The local address
MAC addresses are beyond the W7FC responsibility, W7FC operates with IP (v4 and v6) addresses only. So the rules are valid till the IP addresses are valid.
>1- the laptop is coupled via WLAN to another home / public network.
2 -the laptop is coupled via LAN-cable to another / the same home network.
If the laptop is (dynamically) assigned with IP address by the same router, there is no reason to change any rule. All the IPs assigned by the same router belongs to the same subnetwork always.
So all “LAN” based rules are valid (till you do not have per-IP, PC specific rules)
The behavior on a different network depends on the router’s subnetwork.
If the subnetwork address range is the same (e.g 192.168.1.0/24) there is nothing to change.
If the subnetwork is different (e.g. 192.168.0.0/24) you have to adjust “LAN” based rules.
Using Settings/LAN you can smartly arrange all the rules with LAN prefix at once accordingly to the new subnetwork address range.
>In case "not valid" how to operate the Settings / Change existing Rules / LAN?
current settings mention:
Pressing the button W7FC lists all the adapters (including virtual ones) on the current PC.
You can edit the list if required. However, typically, if you treat all the local computers as safe regardless of the adapter the local computer is connected via, you can keep the list intact.
Pressing OK on the list confirms W7FC to change all the rules with LAN prefix (in all the zones and applications) to the new set of new listed adapters.
So, one button click is enough to migrate to another network.
>LAN 1 : fe80::c15a:f337:dd5c:366b/128
Local link address, if you do not have IPv6 connectivity you may not worry about that at all
> LAN 2: : 192.168.1.0/24
The main home subnetwork.
> LAN local v6 : ff80::/64
The local address
- VistaFirewallControl
- Site Admin
- Posts: 624
- Joined: Fri Mar 27, 2009 11:25 am
Re: Rules valid over different networks
by PietO » Wed Jan 04, 2012 11:50 am
VistaFirewallControl wrote:>In case "not valid" how to operate the Settings / Change existing Rules / LAN?
current settings mention:
Pressing the button W7FC lists all the adapters (including virtual ones) on the current PC.
You can edit the list if required. However, typically, if you treat all the local computers as safe regardless of the adapter the local computer is connected via, you can keep the list intact.
Pressing OK on the list confirms W7FC to change all the rules with LAN prefix (in all the zones and applications) to the new set of new listed adapters.
So, one button click is enough to migrate to another network.
I did read your included Help-info before issuing this question:
"Pressing the button Windows 7 Firewall Control collects all active network interfaces parameters into single list and allows editing the parameters. Each network interface found is appended with the LAN prefix. All the network interfaces are represented as a list of separate access rules as the result. After the list editing is finished all existing rules with the same prefix can be replaced with the new rules set. The options allows you keeping the same security settings for the applications in new connection environment"
Thus i understand from your answer that a "ONE CLICK ACTION" = OK is sufficient to modify the rules for the same adapter (HW-is not changed) connected to a different network (actual connection is listed with new IP-range under same LAN-identity name). I understood from the Help-info that some editing is required in this case. Pressing OKE is sufficient thus: great and thanks for the reply.
- PietO
- Posts: 26
- Joined: Wed Mar 02, 2011 12:09 pm
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 0 guests
