You made an advanced rule. Advanced rules dont get asked in Sygate and they take precedence over normal application rules. They can be disabled or abled, that is all. What sounds bad is that you made an advanced rule that allows ALL the applications you have. Even advanced rules should be application specific most of the times.
Browsers don't get asked, when webshield is running, that is true to 80 tcp traffic connection. I am not sure how Sygate would work in case there is a 'browser hijack', some other app launching a browser.
Jarmo,
How is it that you took the time to write such a “response” just to be so incredibly wrong – in a public forum nonetheless? Not only does it work as I said it does for each session repeatedly, but the rights of all other programs are unaffected (those that need to ask – ask, and those that don’t need to – don’t). The only thing I haven't been able to do (the machine is behind a router, which is currently buried) is test the computer's ports from the 'net.
In the future, it would be better if you took the time to experiment with the stated software (Sygate Personal Firewall Free and Avast HE in this case) and communicate that you’ve done so given the subject at hand (with any variations in versions or setup), before embarrassing yourself while incorrectly downing someone else’s work and reputation. This will not only help your credibility in such matters, but will offer consistently reliable points or counterpoints for those needing assistance (as long as you don’t deviate).
Moreover, after you’ve actually taken the time to experiment with a poster’s findings (something you’ll need to do before doing the following) it would be better if you communicated thusly:
• “After following the poster’s list point-for-point, I couldn’t replicate it. Are you sure everything you did is listed here? Has anyone else tried this, and if so, what results did you get?”
• “In the pro version of that application I couldn’t get it to work like he said, but it does (in this version) work like this ____. I attribute this to changes in functionality between the two programs.”
• “I followed the directions of _____ and it works as described on my machine with the following additions and/or subtractions...”
In closing, if I take the time to research, experiment, and communicate certain results on my machine, it is as I say it is.
=AirCeej=
Further ObservationsOne nice thing about the configuration I listed on the previous page is that if FF wants to connect to a different port in the current session, Sygate asks you if it's alright; interestingly, this activity went unnoticed in my previous setup – so I obviously didn’t know it existed. Therefore, as long as there are no drawbacks to the current configuration I will continue to use it and recommend it to those with whom I consult, as it currently seems to be the most reassuring method of security with Avast HE and Sygate PFF 5.5 build 2710. What’s bothersome is I don’t know if there’s a way to get a program to “ask” for permission every time it wants the ‘net during the current session (same program/same port).
Nonetheless in this circumstance, Alwil certainly provided a means of better security, functionality, and reassurance with 4.6.623 - well done indeed!