10-21-2008 4:36 AM
I have turned off the hardware firewall in the gateway/router to allow all applications thru....
I have tried everything I can think of to add IP's to the firewall set-ip:
It picked up my IP ok
It picked up (and I confirmed) the DHCP and DNS server.
I did see in the gateway/router a different set of "Primary and Secondary DNS" IP's, so I added those too as "trusted" (even though ipconfig /all showed something else, in any case, I have both sets now).
I set up an IP range that covered every IP number that could be assigned to all the devices in the gateway/router.
The PROBLEM I keep running into is when the ZA firewall is on (and I know it is a firewall issue because the problem STOPS when I turn it off), is that I keep losing and reacquiring my internet connection.......connects......few minutes later it drops......then it automatically reconnects.......etc. (repeat pattern here).
ZA support is at a loss.......UVERSE support Level 2 is at a loss (and of course they don't support your firewall but they graciously tried to help anyway).
I have run out of ideas....anyone?
10-23-2008 6:34 AM
Oh well now ya know that would be just to easy. In any case, I have un-installed and re-installed a few times just for good measure. I even got instructions from ZA on how to manually verify all files have been removed just to be sure it was truly clean before re-installing. There have even been two main Zone Alarm engine upgrades that have had no effect on this problem.
I have had Zone Alarm forever, back when I had Ameritech.net dial-up......and no issues
When I had SBC DSL........and no issues
Now that I have UVERSE "something" is happening. If I turn off the firewall and use it as an expensive "Antivirus/antispam" checker, and just use the windows XP firewall, no issues. Turn on that ZA firewall though.....and then it gets ugly.
10-23-2008 7:43 AM
10-23-2008 7:51 AM
I'm so desperate you can ask me how a chair whould be shaped if my legs bent the other way.......but I digress.
Is your firewall set to hide computer from users? Yes.
Is your internet lock set to automatic? The only "lock" I am aware of is the "panic button" at the top of the ZA screen if you click on it to immediately halt your internet access if you believe you are under attack. Should I be looking somewhere else?
Oddly enough, I forgot this until you mentioned it, I DO have the same ZA Pro installed on a laptop and it has no issues at all while connected wirelessly when using it in my home. The one-and-only desktop is hardwired to the gateway/router, although what difference this makes I do not know.
The ZA support said.......have you ever looked in the logs when the connection dropped to see if at that very moment, it blocked an IP? See if it was one of your critical needed ones? (GOOD IDEA (insert DOH here).....I'll have to try that later)
Still, any more thoughts you have are appreciated.
10-23-2008 8:14 AM
re: Go to program control in za and see if automatic off is turned on or off. It is on turn it off.
OK, I'll have to re-look in there. I know it lists all the programs I access and shows their "trust" level and authorities, but a generic "overall" setting for the lock in there? THIS I will have to look for........
Thank you, will let you know what I find.......
10-23-2008 8:17 AM
On second thought..........even if it DID automatically lock on some determined incident.......does the lock "turn off" automatically?
As when I drop connection, I reconnect immediately.
10-23-2008 8:36 AM
10-23-2008 8:39 AM
10-23-2008 8:41 AM
Silly person that I am, I tried working with ZA technical support - tier 2, specifically. They really ARE (evein still) trying to help me. The UVERSE suport gave me the idea for "trying" the UVERSE forum, which HAS given me some ideas.
If your a ZA user then you were impacted by the microsoft patch KB951748............now I can't be 100% sure.......BUT....I swear things went downhill after that........that was "around" when I got my UVERSE service.....did I have the problem BEFORE or after it? I'm not 100% sure.
In any case ZA issues a new-and-improved version to deal with that..........but I'm still having problems.
10-23-2008 8:43 AM
The possibility that I have accidently set this auto-lock somewhere I didn't expect, well, anything is possible.
IF this autolock is turning off, seconds, after it is tripped by something.......well then that's just plain silly. Even if it did think there was some attack going on, they rarely end within seconds :-)
But, I will STILL look for this.....
10-23-2008 2:29 PM
Call me crazy, but it sounds almost as though ZA is thinking it is getting hit with a DoS attack. I am not a ZA user, but are there any custom configs such that you could turn off just its attempts at sensing / blocking DoS attacks? Is your PC plugged directly (wired) into the RG, or do you have another switch in place?
I have heard of other users having some issues with what sound like packet floods - which I assume are coming from various equipment not playing nice with the multi-cast stuff happening on the RG. Perhaps there is a high rate of packets getting broadcast - and hitting your ZA protected PC - which triggers the ZA PC to block / go into protection mode.
I suspect the RG would not broadcast those same packets over the wireless segment. But who knows.
Just a thought.
10-24-2008 3:48 AM
OK, here we go again.....
Checked PROGRAM CONTROL and the "automatic lock" was OFF.
I cleared the FIREWALL log and turned back on the ZA firewall and waited........it dropped in front of me and immediately reconnected and not one entry in the firewall log showing a blocked IP.
If it was a DoS attack, I'd expect my ability to use the internet would be rather or entirely impaired. Everything else "seems" to be operating just fine.
10-24-2008 3:52 AM
Oh and my apologies to the last User who asked me questions for not answering them.
The RG is directly wired in and is on the same table as the desktop.
I DO think there is some miscommunication going on between the RG and what ZA "thinks" it knows. But I do have the hardware firewall in the RG turned off. All the other options in the RG that help stop attacks I have turned off as well. I WANTED ZA to get it all........and it would rule out two roosters in the hen house fighting over the connection.
But, no luck so far.......it seems there is still a conflict.
© 2016 AT&T Intellectual Property.This link will open a new window All rights reserved. AT&T, Globe logo, Mobilizing Your World and DIRECTV are registered trademarks of AT&T Intellectual Property and/or AT&T affiliated companies. All other marks are the property of their respective owners.
Congratulations! You earned the Liz badge!