Firewall blocking internet

Similar Messages

• Firewall blocks internet sharing

  Hi all,
  I know this has been covered before but I've never seen a solution that works for me. Maybe someone has time to talk me through it.
  All I need to do is configure the OS X firewall so that internet sharing via ethernet isn't blocked by the firewall. Can I do this via the terminal? Which ports do I need to open? I need this to work so I can distribute builds across Xcode installations but I think internet sharing is all that is required for it to work.
  Thanks,
  Stephen

  In the Sharing pane of System Preferences, click the Advanced button under the Firewall tab, enable firewall logging, and then try using those services on the other computer. When done, check the firewall log and look for the number after the : in the logged entries; this is a port number. Knowing the IP address of the other machine will help determine which entries were produced by it as opposed to ones which came from the Internet; this is visible in the Network pane of System Preferences.
  (15371)

• Firewall Blocking Internet Access

  Looking for suggestions to solve this problem. Multiple computers in my home will suddenly be unable to access the internet. Turning the firewall off for a few seconds, then back on will eliminate the problem on each computer affected. This problem seems to have shown up after the last security update, but not immediately. When unable to access the internet, if I look at the network system pref, it lists an ip address of 167.xxx.xxx.xxx. After toggling the firewall, I will get my normal 10.0.0.x back.
  The issue seems to manifest a couple times per day, and almost certainly if the computer goes to sleep or is restarted. It happens on both my desktop and my laptop running 10.5.8, but not on a g3 imac running 10.4.11.
  If I look at the firewall log I see multiple messages about "Firewall[90]: Deny mDNSResponder data in from...." These show up constantly about every 30 seconds or so. I am guessing this may have something to do with the issue as I do not see these messages in the G3 imac's log file.
  Network is set up with a time machine with three macs (one g3 imac running 10.4.11, a G4 MDD running 10.5.8 - both wired connections, and a G4 ibook running 10.5.8 (wireless) as well as a couple network printers, dish, slingbox, a linksys switch etc.
  Any suggestions would be appreciated as this is getting very annoying. Thanks.

  I'm sorry, I said time machine and meant time capsule. The time capsule is set up as the router, and the linksys device is only a network switch. The modem is capable of functioning as a router also, but I just verified it is only functioning as a high speed modem (according to my isp). I have tried restarting and reconfiguring the time capsule, but it has not seemed to affect anything. It seems to me data goes out (ie to printer or network drive or internet), but does not come back.
  Also, I have switched locations of the G4's and the G3 and get the same result.... the G3 always works, the G4's only work when their firewalls are toggled off. I have at this point tried reinstalling a 10.5.8 combo on the laptop to no avail. I think I might just do a clean install of OSX from CD and see what happens. Thanks for the reply.

• Firewall blocks DHCP after Logic Board Change

  I had my computer in repair and they changed the logic board. Since then "Set access to specific services" setting misbehaves and blocks DHCP configuration.
  After the repair it asked me to allow incoming connections for configd. I denied because I did not know it.
  Problem: configd is not listed in Preferences so it cannot be unblocked!!!
  How can I completely reset the rules table and start over?
  Firewall[41]: Deny configd data in from 10.37.129.1:67 uid = 0 proto=17
  Firewall[41]: Deny mDNSResponder data in from 169.254.203.40:5353 uid = 0 proto=17

  I give up. This is a horrible issue. Now, the Firewall blocks internet access to configd and mDNSResponder after wakeup from suspend despite being on the "Allow all incoming" list of the System Preferences panel.
  The firewall has become useless.
  Jul 17 14:22:13 garfield2 Firewall[42]: Deny configd data in from 10.37.129.1:67 uid = 0 proto=17
  Jul 17 14:22:15 garfield2 Firewall[42]: Deny configd data in from 10.211.55.1:67 uid = 0 proto=17
  Jul 17 14:22:22 garfield2 Firewall[42]: Deny configd data in from 10.37.129.1:67 uid = 0 proto=17
  Jul 17 14:22:24 garfield2 Firewall[42]: Deny configd data in from 10.211.55.1:67 uid = 0 proto=17
  Jul 17 14:22:30 garfield2 Firewall[42]: Deny configd data in from 10.37.129.1:67 uid = 0 proto=17
  Jul 20 09:18:58 garfield2 Firewall[42]: Deny mDNSResponder data in from fe80::21b:63ff:fe9b:37d4:5353 uid = 0 proto=17
  Jul 20 09:18:58 garfield2 Firewall[42]: Deny mDNSResponder data in from fe80::21c:42ff:fe00:0:5353 uid = 0 proto=17
  Jul 20 09:18:58 garfield2 Firewall[42]: Deny mDNSResponder data in from fe80::21c:42ff:fe00:1:5353 uid = 0 proto=17
  Jul 20 09:18:58 garfield2 Firewall[42]: Deny mDNSResponder data in from fe80::21b:63ff:fe9b:37d4:5353 uid = 0 proto=17

• 10.6 Server's Firewall Blocks It's Own Internet Connection

  I had this problem about two years ago when I was trying to run 10.6 on my home server (Mac mini) for the first time. Eventually I gave up, reverted the mini back to 10.5, and ram problem-free for years. When 10.7 came out, I tried to upgrade the mini to that. That didn't go well either, but mostly due to Lion missing many many features (suprise!). So I figured that 10.6's problems were fixed by now, and gave it another shot. It went fine and I've been running for about a month problem free (or so I thought). But now it's offline again. I finally found one other person on another forum that had the EXACT same problem as me. And reading this description, I realize that I have been having problems all long, I just assumed they were my ISP's problems, not my own.
  So here's what happens. The firewall in 10.6 server will "freak out". It will be running normally, then suddenly it will go haywire and block everything. And I mean everything. My computer won't even be able to get an IP via DHCP. Everything is blocked. But as soon as you stop the firewall, everything works normally. You can even modify the firewall rules, and set it up so there are NO deny rules, and EVERY connection to and from every host is set to allow. And the firewall still blocks everything. This is the same exact thing that happened 2 years ago when I first tried to run 10.6 Server on my mini. The difference is that back then, this would happen either immediatly, or within a day. This time around, with 10.6.8, it took about a month before suddenly, without any provocation, all internet connections stopped.
  I've had this happen on multiple computers. I don't do anything special, I just set up a basic firewall scheme where everything in the LAN range is allowed, and everything from "any" is allowed only to service ports I'm running. The basic gateway setup. Now I was running 10.6 Server on my laptop (for netbooting) and it would do the same thing. But because my laptop wasn't acting as a gateway, I could just turn the firewall off (you need the firewall for NAT). My mini server IS acting as a gateway, as was another mini I set up for a client of mine (that eventualy I changed over so they were running off an airport, and the mini server was just a client. But I don't want that setup at home, I want my mini to be the router).
  I have verizon Fios internet. 25/25, it's great. The ONT is in my basement, and it's plugged into the same fused outlet as our freezer. From time to time, when the power goes out, it trips that breaker and the outlet goes dead. My itnernet is gone and I have to go reset the outlet. Once I do, my mini won't get an IP from Verizon until I reboot the mini. Not once. Not twice. Usually 5-10 reboots, and suddenly it will get an IP. I always assumed this was a verizon problem. Until I read someone else's post about this same problem. Turns out, that's the firewall blocking DHCP again! If you turn the firewall off, you don't have to keep rebooting, it will grab an IP right away.
  At least I'm not crazy! So what is going on here? Does anyone have any idea what is going on with my firewall, or how I can fix it?
  Lastly, after 4.5 hours of complete inability to get an internet connection with the firewall on, it just started working again. I now have fully functional, normal internet. I find it hard to believe 10.6 has a firewall that is simply broken. I find it even harder to believe I'm imagining things, or that I've had fluke after fluke. Something is going on with 10.6 Server.

  The DNS skapegoat just doesn't make sense.
  Why would "improper" DNS cause OS X's firewall to block all network connections? Even the server's ability to make it's own DHCP connection?
  As far as a router, I don't want to use a cheap unreliable residential router. I have a home file server that, aside from running 10.6, makes a super reliable router. And port mapping aside, OS X Server's DHCP server is great to use. Rock solid. It makes no sense to run a cheap residential router when I have a home server. Then every 6-18 months, I get to deal with that router slowly failing, as my internet connection gets slower and slower. No thanks.
  So back to this firewall issue. I've talked to Apple aobut this before, and they give the same generic "DNS has to be right" answer to basically every problem I've ever had with 10.6 Server (hinting at endless CalDAV problems). But no one has every explained what that specifically means, or how something like wrong DNS (whatever that even means) can cause the firewall to block everything. This just makes no sense to me. And this especially does not explain why, after 10 reboots or so, everything just magically starts running normally.
  I just had an incedent today where I woke up to no internet. I rebooted 3 times. Each time, I either got a self-assigned IP address, or the ethernet interface would toggled between "unplugged" and "no-ip". I could turn the firewall off and the server would INSTANTLY start functioning normally. I'd happily run without a firewall, and just turn all services I'm not using off. However NAT needs the firewall, so without the firewall, the Server is the only Mac on the network that has an internet connection. So I kept rebooting and rebooting, and I think about 8 reboots later, like magic, the server came up, grabbed an IP, and everything started working normally.
  Also my IP through my ISP is dynamic, and that isn't going to change. So yes, I am trying to use OS X Server as my router on a dynamic internet connection. I've been doing this since the days of Mac OS X Server 10.1. Only 10.6 has had any problems at all.
  So really, "10.6 is more picky about DNS" isn't an answer to this problem. Or, at least, it's not a sufficient answer. I need much more information than that.

• Block internet to certain apps?

  I am trying to block internet access to certain 3rd party (non-Apple) applications that I run in Mac OS X. I'd rather not say why I need to do this, but my computer should basically just stop all attempts at an internet connection by these applications (it should act as though there is no internet connection).
  On Windows, I would just find the port the applications are trying to use and block the ports with my firewall. How do I do this on my Mac?
  BTW, I'm a recent switcher, but am computer and IP literate.
  Other info: I switch between Wifi and a Wired ethernet connection. Please ask for any other details you need.
  MacBook 1.83 Core One Duo   Mac OS X (10.4.8)  

  I've not seen or heard of anything else, though you might find something similar looking on http://www.versiontracker.com or http://www.macupdate.com
  LittleSnitch will work unregistered for three hours at a time with no limit to how often it's used. You just have to decide if the registration fee is worth not having to go back into SystemPreferences every three hours to turn it back on.

• OS X firewall blocks iTMS

  I've spent about two hours trying to figure out why OS X personal firewall blocks the Music Store, with no luck. Unless the firewall is turned off, the other computers (all Macs) on the network cannot log in. The sympton is the "Accessing the store" and eventually timing out.
  There are a lot of Windows-specific posts about firewall problems, but none that I could find about the Mac firewall.

  I have an additional Ethernet card in my Mac, and share the Internet access via that card. The built in port is connected to a cable modem.
  The Ethernet out (from the second card) goes to a sixteen port GigE switch, which lights up various ports around the house.
  I don't use any wireless in the house.
  Andrew

• "Firewall" and "Internet" buttons missing from "Sharing" preferences page

  Hi,
  I recently upgraded two servers to 10.4.3 (one was running 10.2 and one was running 10.3). On both servers now the Firewall and Internet tabs are missing from the Sharing preferences. Also, under the list of services on the Sharing prefs, there are only three services listed:
  REmote Login, ARD, and Remote Apple Events. No other services are listed.
  I found this problem because something in the firewalls changed and was blocking access to the servers via ARD. If I stop the firewall, then ARD works. So I wanted to go into the firewall settings and open up the ports required by ARD. Lo and behold, no Firewall tab on the Sharing page!
  I've searched everywhere for info on what could make most of the services disappear, along with the Firewall and Internet tabs. But I can't find anything. Any ideas out there?

  A call to Apple confirmed that the majority of services on 10.4 Server are now handled through Server Admin rather than through the Sharing preferences window.

• Firewall blocks afp even though enabled!?

  This relates to a G5 running 10.4.11 and a mac pro running 10.5.5
  We are having a nightmare with file sharing between two machines. We can connect fine from the mac pro to the g5 via a ethernet router. We can't however connect from the g5 -we can however connect to the internet and pinging the mac pro works. We have tried connecting with the bonjour adress and the ip addres - no results. The personal file sharing tabs in system preferences on both machines are ticked. The firewall is set to allow essential services, and below are listed printer sharing, file sharing etc. However i opened the log and saw that a few afp connections had just been denied - turn the firewall off and we can connect to the macpro. Surely we should be able to connect on a local area network without the firewall blocking it? It also denies cupsd (we have a printer networked to the g5) but also less frequently nmbd, which seems weird as to my limited knowledge this is to do with windows file sharing - and we do not have a windows machine on the network.
  Weirdly I enabled the firewalls on both machines fairly recently after noticing they were off - however my client (i am a retoucher) has confirmed that filesharing was always like this - even when firewall off which I seem to recollect as correct. In theory if we have a router with firewall enabled do we need the firewall on on the macs?
  Please help I have reached the limit of my knowledge on this one! Many thanks

  On the MacPro > System Preferences > Sharing > File Sharing, is the list of shared folders what you expect and for each shared folder, are the authorized users and permissions set up as you would expect? Clicking on the options button underneath that panel, is AFP checked, and if desired or necessary, SMB and/or FTP?
  In theory, I would say yes, if you have full faith in the personal integrity of all the local users on the LAN, and you believe them to be cautious enough that they won't have inadvertently downloaded and installed some sort of malware onto their machines, and you believe that your LAN is adequately secured (e.g., using WPA2 for the WLAN), then it is true, you should only need to maintain the firewall at the internet-facing router.

• Error message about firewall and internet sharing

  hello all i have a question regarding the use of firewall and internet sharing.
  I have a PMG5 connected to internet through Airport. I've linked an Xbox 360 via the built-in ethernet port in order to access Xbox Live. I had to open specific UDP ports on the OS X firewall but it now works fine. However, in the Sharing Preference Pane, Internet Tab, i still get an error message saying that my Internet Sharing is disturbed by the settings of the firewall and sharing services, it says that i did not activate "personal web sharing" in the first two tabs...but i DID ! And there's no way to get rid of this error message.
  I know I know some may consider it's not a real problem because it's just an error message while the connection actually works fine but well, I tend to hate error messages when they're not supposed to show up. So if anyone know the answer, thanks in advance...
  Good day to everyone
  Vince, Paris...

  sorry about the delay in replying, was kinda busy
  well trashing the pref files was useless and i tried with another user, same thing. As for the second opinion, the problem was not about which port was used cause as i said the connection sharing works fine and anyway it was the correct port that was checked, it's just that i get an error message while there is no apparent error and everything works fine, i'm told that personal web sharing is not enabled but it is...
  Anyway as i said, it's probably not a real matter, as long as it works...which brings me to another thing. I've created a special protocol in the firewall to enable a proper dialog with the xbox. it's basically the same thing you do for ichat AV when you have video connection problems, you track down the concerned UDP port using terminal, you allow traffic and all... The protocol for the xbox worked great for some days, but now it seems it's not enough, the game set keeps trying on another port and i constantly have to update the protocol or deactivate the firewall...and enabling back all UDP traffic is not enough to solve it.
  In a way i think everything is linked, the initial error message when everything was fine and the current trouble. Any idea?
  thanks
  Vince

• How to block internet connection for a period of time?

  Hey guys is there a way to block internet connection via a lan connection for a period of time? A program that when my pc is boot up it run secretly and at the time schedule it block the internet connection with no pop up. When i not at home some person
  used my pc to use my internet connection everyday. I can't lock up my pc since my brother or my dad used it.
   

  Hi,
  You could create a schedule task to achieve this.
  The detailed solution please refer to this thread:
  https://social.technet.microsoft.com/Forums/en-US/7544cbed-507d-4eef-907d-bafb99b45411/disable-internet-for-a-set-period-of-time?forum=w7itprogeneral
  Karen Hu
  TechNet Community Support

• Blocking internet access in a virtual windows xp box

  Is there a way to block internet access when I have a virtual windows xp box within Windows 7?
  The reason, is I just want to run one application and restrict internet access as I some users are restricted from the internet.
  Thanks
  John

  Hi, Juke.
  I'm afraid I'm a dummy, and don't know how to do this. I'm sure as April 8 approaches, a lot of people with important DOS or XP apps will be wanting to insulate their XP VM from potential hacking while still running programs locally.
    Thanks -- Dave K.

• Firefox either closes suddenly when I click on the address bar after startup or it hangs and also blocks internet explorer from loading

  On my Windows XP sp3 system the current the last two releases of Firefox both exhibit the same behavior. When I launch Firefox it will either shutdown within seconds with no crash reporter or other error logged or it will hang completely and indefinitely. When it hangs it also blocks internet explorer 8 from loading. I have tried and followed all the steps in the crashing FAQ including safe mode, uninstalls, re-installs, profile deletes (even the profile dialog closed suddenly). I use Norton Internet Security version 18.6.0.29. A full virus scan does not find any problems. I have disabled all toolbars, plugins and addons and the problem persists. Google Chrome, Internet Explorer and Opera all work fine. Only occasionally does Firefox load and keep running. It's as if it is failing on some check at startup and either crashes or hangs most of the time.

  That is a Flash Player that plays an MP3 file.
  *http://instantteleseminar.com/?eventid=29457633
  *http://ds1.downloadtech.net/cn1086/audio/59175301551694-002.mp3
  Is Flash installed and working?
  *http://www.adobe.com/software/flash/about/
  *http://helpx.adobe.com/flash-player.html
  *http://helpx.adobe.com/flash-player/kb/troubleshoot-games-video-audio-flash.html
  Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance/Themes).
  *Don't make any changes on the Safe mode start window.
  *https://support.mozilla.org/kb/Safe+Mode
  *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes

• How to block internet to one of my machines

  I have a very old windows 95 machine on my network. I am trying to figure out how to block internet usage to this machine but maintain the network. I use PC MacLan on that machine and it works fine. It is just that there is NO virus protection on this machine which means it is open all the time unless I unplug the ethernet cable.
  Can anyone give me any suggestions? I have a router and dsl. Was hoping I could make some kind of setting in the OS pref panel.

  Except I have to give that machine a fixed IP, correct?
  Nope, DHCP will be fine, as long as the Router can prevent Internet for that one.
  I think you can block Internet Access right on the PC too, by Not giving rights to use any Browser or eMail program, see if this helps...
  http://forums.cnet.com/5208-6142_102-0.html?forumID=5&threadID=236440&messageID= 2418572

• Firewall+AntiVirus+Internet Security

  I'm going to buy an iPad mini+Wifi+Cellular. But because I often do banking payments and web browsing, I'd like to install a firewall+antivirus+internet security on it. I've heard iPad does not need to security software, but I'd like install a one.
  Which software is the best for it?
  What's your opinion about VirusBarrier (Intego)?

  The iPad needs no such software. All you are likely to find are worthless time- and money-wasters that will not protect you from anything.
  What's your opinion about VirusBarrier (Intego)?
  If you are asking about the OS X program, it is garbage. It is the only such utility that I determined to be completely unacceptable due to its horrendous effects on performance.
  If you are asking about the iPad app, it is also garbage. I suggest you read its reviews: