Basic Knowledge about the Firewall A firewall works with network protocols like e.g. TCP, UDP, IT, etc. A simple example for the building up of a connection is also called handshake procedure. This example shows how a communication between two computers in the Internet is build up.
Page 4
As URLs are the first and most frequent kind of URLs the terms are often used as synonyms. In colloquial language URL is frequently used as a synonym for Internet addresses like e.g. www.avira.com. Slide-Up: A slide-up is a small window which appears slowly top right or down right on your screen and disappears after an interaction or after some time.
This is the default setting after the installation of the Avira Premium Security Suite. In case the PC is located in a network environment or the PC should access to network devices like e.g.
Page 6
“Online protection” is located on the left side of the Control Center. Open firewall settings A click on “Firewall” on the submenu of “Online protection” opens the configuration of the Avira Firewall. This menu appears on the right side in the main window of the Control Center. - 6 -...
Adaption of the Security Level of the Firewall By clicking and keeping hold of the security level controller you can adapt the security level. The possible levels are “Low”, “Medium”, “High”, “Custom” and “Block all”. You can find a description of the levels directly on the right side of the controller. Please, choose the level “Medium”, in case any problems with network printers, removable hard disk or similar network connections should occur.
3.1.3 High The computer is invisible in the network and the connection coming from outside are blocked. Flooding and port scan are prevented. 3.1.4 Medium In comparison to the firewall setting “High”, the computer is visible in the network and receives TCP and UDP requests.
“Medium” some TCP and UDP package requests are recognized and forwarded automatically. Others are refused. 3.1.5 Low Also the level “Low” offers you the protection of the Avira Firewall. Flooding and port scan are not prevented, only detected. These are the most frequent methods for finding vulnerabilities on your computer.
Click with the right mouse button on the tray icon in the task bar and choose the point “Configure AntiVir”. You also have the possibility to start the configuration via the Avira Control Center by opening the Control Center and by clicking on “Configuration” top right or by pressing F8, or via Extras –> Configuration.
A predefined adapter rule is dependent on the security level. You can change the se- curity level via the Avira Control Center like it is described in chapter 3.1 or change the adapter rules as you want. After you have changed the adapter rules the control- ler of the firewall is placed on the security level “Custom”.
3.2.1.2 Outgoing rules Outgoing rules help to control the outgoing data transfer by means of the Avira Firewall. You can define an outgoing rule for the following protocols: IP, ICMP, UDP and TCP. In order to enter settings for the “Outgoing rules” you can proceed in the same way as for the settings of the “Incoming rules”.
Page 13
VMware In case the Internet access should not be possible out of your VMware, you have to enable it via the following template. - 13 -...
3.2.2 Application rules This list contains all users in the system. If you are logged on as administrator, you can choose a user and set a rule for him. If you don’t have administrative rights the list only shows you the currently logged on users. Example: Thereby an administrator can make sure that a web browser doesn’t receive Internet access or that a chat program is not executed.
Furthermore the action can be changed from “Allow” to “Deny” or “Ask”. If you choose the action “Ask”, you are always asked before executing a program if you really want to start the program. In case of the action “Deny” the program is blocked by the Avira Firewall. - 15 -...
3.2.3 Trusted vendors In the menu “Trusted vendors” a list of reliable software producers is shown. You can add or remove producers to or from the list by using the option “Always trust this vendor” in the popup window of the network event. You can allow the network access of application which are signed by the listed vendors by default.
3.2.3.2 Automatically allow applications created by trusted vendor If this option is activated, applications with a signature of known and trusted vendors get automatically an access to the network. This option is activated by default. - 17 -...
We recommend you to keep this option activated, as we have the contact data of these vendors. The vendors are licensed software enterprises. Therefore the vendors are categorized as trusted vendors. 3.2.3.3 Vendors The list shows all vendors who are categorized as trustworthy. - 18 -...
3.2.3.4 Remove The marked entry is removed from the list of trusted vendors. In order to remove the marked vendor definitely from the list, press “OK” or “Apply” in the configuration win- dow. - 19 -...
3.2.3.5 Reload The changes are cancelled. The last saved list is loaded. Tip: If you remove a vendor from the list and click on “Apply” the vendor is removed for good. You can’t reload it. But you have the possibility to add the vendor again to the list of trusted vendors via the option “Always trust this vendor”...
3.2.4 Settings 3.2.4.1 Automatic rule timeout Block forever A rule which has been created for a portscan is kept automatically. Remove rule after n seconds A rule which has been automatically created, e.g. for a portscan, is removed after the given time.
Stop Windows Firewall on startup This option deactivates the Windows Firewall on startup. This option is activated by default as the use of two firewalls at the same time might cause problems. Two desktop firewalls interfere with each other. 3.2.4.3 Notifications Here you can choose in case of which events you want to receive a notification from the firewall.
Page 23
In case an application should try to build up an external connection which you have not allowed in the firewall or which is not privileged, the connection is blocked by the Avira firewall and you receive a desktop notification. This notification informs you about the application and why it has been blocked.
3.2.4.4 Application rules With these options you set the configurations for the application of the firewall. Advanced settings If you activate this option, you have the possibility to administer different network ac- cesses of an application individually. That means you create a special application rule for an application.
So you receive only one pop-up window per process. Automatically suppress pop-up notification while Game Mode If this option is activated, the Avira Firewall automatically changes to the game mode in case an application is executed in full screen mode on your system.
3.2.5.2 Remember action for this application Always enabled The option “Save action for this application” in the dialogue windows “Network event” is activated by default. The option “Always enabled” is activated by default. Always disabled The option “Save action for this application” in the dialogue windows “Network event” is disabled by default.
the option “Save action for this application” has been deactivated for the last network event, the option won’t be active for the following network event. We recommend you to keep this option, so that all actions about the connections of the applications are automatically saved.
been displayed, the detailed information will also be blanked for the following network event. 3.2.5.4 Allow privileged Here you can configure the settings for the option privileged. Always enabled The option “Allow privileged” is activated by default in the box network event. Always disabled The option “Allow privileged”...
General information about parental control Avira Premium Security Suite offers a parental control function to filter undesired or il- legal Internet offers. You can assign different roles to different users. A user role is configurable and contains forbidden or allowed URLs (Internet addresses) and forbid- den content categories.
Activation of the parental control In order to activate the parental control, go to the configuration of AntiVir and activate the expert mode. Choose the WebGuard on the left side. You can open the windows by clicking on the plus in front of WebGuard. The parental control is the third point. Choose it and activate it on the right side.
Roles You can add a new role or you can change the given roles. In order to add new roles, enter the role name in the free box. 30 sign are given for a name. Example: The role “child under 16” should be added. Click on “Add”.
Page 33
Example: www.google.com and URLs of the category Pornography, Erotica/Sex and Sects should be blocked. The categories are provided by a huge data base of the enterprise Cobion. Furthermore, the web filter accesses to a data base of the consumer protection central Hamburg.
You can change this setting in case a different time or a more frequent update should be necessary. Start the Avira AntiVir Control Center (view page 5) Start the AntiVir Scheduler Click on the button “Administration” on the left side of the AntiVir Control Center.
Changing of an update job Click with the right mouse button on “Two hourly update” and choose “Edit selected job” in the context menu. Now the assistant for creating and changing jobs appears. You see the name and the description of the job. Here you can change the description as you like. By a click on the...
Page 36
By a click on the first box you can change the configuration from “Interval” to “Daily”. In next box you can choose the desired update time. By activating the box underneath you can choose if the update should be started while connecting to the Internet.
Page 37
Click on “Next”, in order to get to the selection of the display mode. Click on the selection box and you can choose one of the following display mode: - 37 -...
Page 38
The procedure for a scan job is similar. Here you only have to choose “Scan job” instead of “Update job”. You find further information: In the online help of the program (Taste F1) In the manual: http://www.avira.de/documents/products/pdf/en/man_avira_premium_secrity_%20suite_en.pdf In our knowledge base: http://www.avira.de/en/support/kbsearch.php In the FAQ (frequently asked questions) http://www.avira.de/en/support/faq.html...
Need help?
Do you have a question about the PREMIUM SECURITY SUITE - FIREWALL 07-2009 and is the answer not in the manual?
Questions and answers