Norton Personal Firewall Symantec's firewall software and the management utility is found under the Programs listing under the Start button or by double clicking on the Norton Personal Firewall icon in the system tray.

Norton Personal Firewall features the following:

· Personal Firewall
· Intrusion Detection
· Privacy Control
· Ad Blocking

The Personal Firewall feature will be the focus of the rest of this document.

*Note: Norton Personal Firewall management utility.

Norton Personal Firewall Alert Tracker

*Note: Norton Personal Firewall alert tracker.

Norton Personal Firewall Configuration

Norton Personal Firewall configuration window, accessed by highlighting Personal Firewall from the management utility and clicking on 'Configure' in the lower right corner in the blue shaded box, presents four tabs as follows:

1. Personal Firewall
· Turn on Personal Firewall - If checked, firewall is operational
· Firewall level - Defines default reactions for certain system events

2. Program Control - Control specific applications access to the network
3. Home Networking - Restrict of permit connections from specific hosts
4. Advanced - Configure advanced firewall rules based on protocols, ports and IP addresses

The Program Control and Advanced tabs are the ones we are concerned with and will detail on the following pages.

*Note: Norton Personal Firewall Personal Firewall configuration window.

Program Control

Program Control allows you to allow or deny network access for individual applications.

· Turn on Automatic Program Control - Will grant access to applications which Norton has identified as safe. Other applications accessing the network that do not have an entry under Manual Program Control will prompt for permission.

· Manual Program Control - Allows the addition of default allows or blocks for individual applications. Can scan and locate most internet enabled applications. Or you may add applications by locating them on the computer's hard drive.


*Note: Program Control tab of Norton Personal Firewall configuration window.

Add Program Manually

Clicking on the 'Add' button under Manual Program Control will display a program selections window as shown below. You must navigate to the folder the application is installed in and select it.

*Note: Program selection window.

Internet Explorer and Netscape

Entries for both Internet Explorer and Netscape will be listed by default in the Manual Program Control list if they were present when and if a Program Scan was performed.

*Note: Program Control tab, Internet Explorer entry highlighted under Manual Program Control listings.

Program Rules

Program Rules for an application can be accessed by highlighting the application in the Manual Program Control list box and clicking Modify.

*Note: Modify button of Program Control tab allows editing of currently highlighted entry.

*Note: Window displayed after selecting an entry in Manual Program Control and clicking Modify.

Change selected option for 'What do you want to do?' to 'Manually configure Internet access' as shown below.

*Note: Manual Program Control entries modify window after changing 'What do you want to do?' selection to 'Manually configure Internet access.'

Program Rules detail what connections to allow based on direction, IP address, port and protocol. Default entries for Internet Explorer are shown in screenshot below.

*Note: Program Rules listing for an application, Internet Explorer shown in example.

Access the Program Rule named 'Internet Explorer HTTP Rule' as shown below. Then click on the 'Modify' button to access this rules properties.

*Note: Internet Explorer HTTP Rule highlighted in Program Rules listing.

Rule's Modify Rule property window contains six tabs, shown in the screenshot below.

· Action - Identifies what action this rule will trigger
· Connections - Type of connection, inbound, outbound or both directions
· Computers - Optionally restricts rule to specific IP address(es)
· Communications - Identifies what protocol(s) and port(s) to apply rule to
· Tracking - Configure logging and alerting of rule
· Description - Name rule

*Note: Program Rules Modify Rule window.

To allow the application, in this case Internet Explorer, to access Knology NetSafe/NetSafe Plus, we must access the 'Communications' tab and add or confirm two ports on the ports list. The first port we want to ensure exists is port 3128. This port is required for the application to communicate to the NetSafe servers. Click the 'Add' button below the list of current ports.

*Note: Modify Rule Communications tab.

Specify Ports window allows the addition of known ports, individual port or range of ports for local and remote ends of the communication. Default settings are shown below. Change 'Filter by' to 'Individually specified ports' as shown on the following page.

*Note: Specify Port window displayed after clicking 'Add' on Communications tab of Modify Rule window.

Once you have selected 'Individually specified ports' for the 'Filter by' option, you will see an empty text box appear below. Type 3128 in this box and click 'OK'.

*Note: Specify Ports window after changing 'Filter by' to 'Individually specified ports' and typing port number into field below.

You will now see that this rule is now at the bottom of the ports list.

*Note: Modify Rule Communications tab after addition of port, highlighted in above screen shot.

The second port we want to ensure is in the ports list is port 8080. Make sure an entry labeled 'remote port 8080' is found in the list. If it is not, follow the rules above for adding port 3128 to this list to add an entry for port 8080'.

Advanced Firewall Settings

To allow any application installed on the computer to access Knology NetSafe/NetSafe Plus, we will need to access the Advanced tab of Norton Personal Firewall's firewall configuration window. From this tab click 'General Rules'.

*Note: Advanced tab of Norton Personal Firewall Configuration window.

A list of pre-existing rules will be displayed in a scroll-box as shown below. We need to add a rule that will permit access to NetSafe for any applications installed on the computer. Click the 'Add' button and you will be presented with the window shown on the following page.

*Note: Window displayed after clicking 'General Rules' on Advanced tab of Norton Personal Firewall Configuration window.

Add Rule Prompt

We want to permit a connection, stick with the default and click 'Next'.

*Note: Add Rule window displayed after clicking on 'Add' from General Rules window.

We want to allow this computer to connect to the NetSafe servers. Again, stick to the default and click 'Next'.

*Note: Second screen allowing selection of connection initiation.

Leave 'Any computer' selected and click 'Next' again.

*Note: Third screen of Add Rule window specifies which machine you want to allow connection to be established to or from.

Change option for 'What protocols do you want to permit?' to TCP and UDP. Change 'What types of communication, or ports, do you want to permit?' to 'Only the types of communications or ports listed below' option. Click 'Add' button to add ports.

*Note: Fourth screen of Add Rule window allows specification of protocol and ports affected by this rule.

Change 'Filter by' to 'Individually specified ports'.

*Note: Specify Ports window displayed after clicking 'Add' on fourth screen of Add Rule window.

After clicking 'Individually specified ports', an empty text box will be shown below. Type 3128 into this textbox and click 'Ok'.

*Note: Specify Ports window after changing 'Filter by' to 'Individually specified ports' and typing port number into field below.

Repeat above steps to add an entry for port 8080.

*Note: Specify Ports window after changing 'Filter by' to 'Individually specified ports' and typing port number into field below.

After adding both ports, your window should look like the screenshot below. Click 'Next' to continue.

*Note: Fourth screen of Add Rule window after addition of two ports allowing any application to access NetSafe.

Keep defaults for and click 'Next' again.

*Note: Fifth screen of Add Rule window allows configuration of logging for events that match this rule.

Provide a descriptive name for the rule we have added and click 'Next'

*Note: Sixth screen of Add Rule window allowing you to assign a descriptive name
to rule being added.

Review settings and click 'Finish' if everything is correct, or 'Back' to make any necessary modifications.

*Note: Final screen of Add Rule window displays chosen settings for confirmation before adding rule.

After the rule has been added, you will now see your entry at the bottom of the General Rules list.

*Note: General Rules window displaying added rule at the bottom of rule listings.