Setting Firewall settings

This topic originally started in another thread, but I thought it would be a good idea to make it its own topic (just in case anyone else is wondering how to do this).
So I went to System Preferences> Sharing> Firewall. It says that it's currently turned off. Then below that there's a list of ports to allow access through the firewall. My question is: what the heck are all of those default ports listed there?? I don't know which one's to allow and which one's to block. Any ideas?
Also in the Advanced settings, what is UDP traffic? Should I block it? Also, when I turn on the firewall, will that block my internet access? Will I have to enter proxy settings for my internet connection?

UDP is a type of IP (Internet Protocol) port. Many Apple services use UDP. See this article for more on this subject.
Which, if any, ports you allow open depends upon how you use your Mac. You can chose to allow access to none of the ports listed, if you wish. If you hold the cursor over each port selection, a text box will open explaining the purpose of each. Enabling the Firewall does not, generally speaking, disable Internet access. It may prevent access to certain websites, and require that you confirgure your firewall to allow access to the website. In most cases, you need not enter proxy settings for your Internet connection, but this can depend upon your ISP.
Joe

Similar Messages

  • Firefox Beta 36 asks to set Firewall settings on startup every time

    Beta 36 for Firefox starting a few days ago asks to add an exception to the OSX firewall on startup each time. Even if I accept, and enter my admin credentials. Also if I add Firefox in the Firewall settings permanent. It never asked me before the latest beta.
    I am using 10.10.2

    ''FredMcD [[#answer-694455|said]]''
    <blockquote>
    Some problems occurs when your Internet security program was set
    to trust the previous version of Firefox, but no longer recognizes your
    updated version as trusted. Now how to fix the problem: To allow
    Firefox to connect to the Internet again;
    * Make sure your Internet security software is up-to-date (i.e. you are running the latest version).
    * Remove Firefox from your program's list of trusted or recognized programs. For detailed instructions, see
    '''[https://support.mozilla.org/en-US/kb/configure-firewalls-so-firefox-can-access-internet Configure firewalls so that Firefox can access the Internet.]''' {web link}
    </blockquote>
    Thanks for the reply but it is fixed now with a new version, beta 37.0
    The previous Firefox version did not resolve even after I removed and then added Firefox again to the Firewall exception list.

  • How do I set my firewall settings in Avasti to allow communications between my HP 8600 and my comput

    How do I set my firewall settings in Avasti to allow communications between my HP 8600 and my computer

    Something to Consider:
    If you are talking about "Avast!" Security Software, either the free or the paid version, the following may apply to you:
    There are three main levels of Security in the Avast! software:  Home, Work, and Public
    Home is the setting many people use when "at home", that is, connected to the home network.  The home network is sometimes defined as the "192.168" network:  these are the computers and printers that you have and use in your home environment.  The network is (most usually) private and (should be) secured with with a passphrase at your router.  The Avast! Software sees the "Home" network as a "safe" environment:  devices connected within the "Home" network are allowed to "talk" (communicate) with one another without undue restrictions.
    Work is the next setting.  The software places some restrictions on this level of communication.  Home users can certainly use this setting -- in many (most) cases, the "Work" setting is a solution that provides for communication and a bit more security for the home network and its devices.
    Public is the strictest setting and is meant to keep your computer safe in a public place:  the library, coffee shop, on a street corner.  Outside "prying eyes" are prevented from peeping and outside communications are restricted.
    If you have set (or left) your Avast! software set to Public, or even Work (and you do not know how to handle the restrictions), then you may have simply locked out the communication between the printer and the computer(s) on your home network.
    Open your Avast! Software and set the security level to either "Home" or "Work".
    You can find out more about how to use the software settings at the Avast! website.
    Advanced Users Only - You will  know if you changed the Rules... this is not something one does by accident.
    If you have changed the rules within the settings, you may have locked yourself out.  Make sure you have both "in" and "out" traffic settings adjusted correctly for each rule you change / adapt / add.
    Kind Regards,
    Dragon-Fur

  • How do I change my firewall settings to allow Spotify?

    I get a message pop up that says.... A firewall may be blocking Spotify. Please update your firewall to allow Spotify (error 101)
    Please help I am so terrible with anything other then the basics.
    I found my firewall settings but I could only figure out how to turn them on and off. This did not help.
    I need it explained to me in the most simpilist of ways.
    Thank you

    Please read this whole message before doing anything.
    I've tested these instructions only with the Safari web browser. If you use another browser, they may not work as described.
    This procedure is a diagnostic test. It won’t solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
    Third-party system modifications are a common cause of usability problems. By a “system modification,” I mean software that affects the operation of other software — potentially for the worse. The following procedure will help identify which such modifications you've installed. Don’t be alarmed by the complexity of these instructions — they’re easy to carry out and won’t change anything on your Mac. 
    These steps are to be taken while booted in “normal” mode, not in safe mode. If you’re now running in safe mode, reboot as usual before continuing. 
    Below are instructions to enter some UNIX shell commands. The commands are harmless, but they must be entered exactly as given in order to work. If you have doubts about the safety of the procedure suggested here, search this site for other discussions in which it’s been followed without any report of ill effects. 
    Some of the commands will line-wrap or scroll in your browser, but each one is really just a single line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, and you can then copy it. The headings “Step 1” and so on are not part of the commands. 
    Note: If you have more than one user account, Step 2 must be taken as an administrator. Ordinarily that would be the user created automatically when you booted the system for the first time. The other steps should be taken as the user who has the problem, if different. Most personal Macs have only one user, and in that case this paragraph doesn’t apply. 
    Launch the Terminal application in any of the following ways: 
    ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.) 
    ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens. 
    ☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid. 
    When you launch Terminal, a text window will open with a line already in it, ending either in a dollar sign (“$”) or a percent sign (“%”). If you get the percent sign, enter “sh” and press return. You should then get a new line ending in a dollar sign. 
    Step 1 
    Triple-click the line of text below on this page to select it:
    kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}' | open -ef 
    Copy the selected text to the Clipboard by pressing the key combination command-C. Then click anywhere in the Terminal window and paste (command-V). A TextEdit window will open with the output of the command. If the command produced no output, the window will be empty. Post the contents of the TextEdit window (not the Terminal window), if any — the text, please, not a screenshot. You can then close the TextEdit window. The title of the window doesn't matter, and you don't need to post that. No typing is involved in this step.
    Step 2 
    Repeat with this line:
    { sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix\.cron)|org\.(amav|apac|cups|isc|ntp|postf|x)/{print $3}'; echo; sudo defaults read com.apple.loginwindow LoginHook; echo; sudo crontab -l; } 2> /dev/null | open -ef 
    This time you'll be prompted for your login password, which you do have to type. Nothing will be displayed when you type it. Type it carefully and then press return. You may get a one-time warning to be careful. Heed that warning, but don't post it. If you see a message that your username "is not in the sudoers file," then you're not logged in as an administrator. 
    Note: If you don’t have a login password, you’ll need to set one before taking this step. If that’s not possible, skip to the next step. 
    Step 3
    { launchctl list | sed 1d | awk '!/0x|com\.apple|org\.(x|openbsd)/{print $3}'; echo; crontab -l 2> /dev/null; } | open -ef 
    Step 4
    ls -A /e*/{cr,la,mach}* {,/}Lib*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta}* L*/Fonts .la* 2> /dev/null | open -ef  
    Important: If you formerly synchronized with a MobileMe account, your me.com email address may appear in the output of the above command. If so, anonymize it before posting. 
    Step 5
    osascript -e 'tell application "System Events" to get name of login items' | open -ef 
    Remember, steps 1-5 are all copy-and-paste — no typing, except your password. Also remember to post the output. 
    You can then quit Terminal.

  • How do I remove "Allow all connections" for Pando in my firewall settings?

    In System Information under Firewall Settings - Applications, I see the following: com.pando.pando: Allow all connections. However, when I go to System Preferences and look at the firewall options, this is not listed, nor can I find any trace of Pando anywhere else on my computer. Is this hidden somewhere, and how can I get rid of it?

    pirihi,
    open Safari’s Preferences, and select its Privacy tab. For the “Block cookies and other website data” set of radio buttons, select “Never”.

  • 10.5.1 Firewall Settings

    The firewall settings have changed in 10.5.1. I wasn't using the firewall at all, but wanted to and wanted to know which setting was the best for my meager needs. I'm just a guy with an iMac with no wireless and no network, just a direct connection via ethernet to my DSL modem. What setting would you guys recommend? "Allow All" or "Allow Essential"? And if I do Essential will that slow anything down like web browsing or anything else?

    Leopard "stealth" is for squat. I just switched from a failing motorola router to the airport extreme with the extra ethernet ports in back. The moto had a firewall and a stealth button.
    https://www.grc.com/x/ne.dll?bh0bkyd2 scans your computer and is quite handy.
    With the moto router and no mac firewall / stealth enabled, every square was green (stealthed), I was completely invisible. Shields Up, that link, called that an uncommon and very good situation.
    With the airport extreme and mac's firewall enabled for essential services and stealth selected, I've got 7 stealthed ports, and 1,048 ports reporting back to the test as closed, and none open. No change from no fire wall, no stealth in preferences/security/firewall. My computer acknowledges itself to outside probes now. Not the best state of affairs.
    I don't see anywhere in the airport utility where one can enable a firewall upstream from the computer. It's nice with the AE that everything plays together easily, but as for stealth.... squatola. Anybody can see you, so use modern encryption, like a previous reply said; WPA2/WPA2-Personal.
    Maybe X.5.2 will beef up the security a little. Maybe X.5.2 will fix iCal's custom repeating event no show bug too. Doubt it though.
    Anyway, Mac still rules. All your bases are belong to us.

  • Netgear cg3100d-2 firewall settings

    Enabling the firewall has 3 settings low, medium, high.When I choose high I can't connect to windows live mail, but does work on medium.I believe high includes SPI.Does anyone know how I can get windows live mail with the firewall set to high? Also need advice about the other firewall settings ie port scanning etc.

    In reply: @samg When someone says to me "With all due respect" I always find they never respect anything I have to say and want to argue until the sheep come home. I will not get into a sludge fest, but I am willing to give my advice to properly asked questions. How do I know what security you want for your camera - I don't - and I really don't care. I am only giving advice where it is needed as the firewall on the CG3100D-2 wont protect you against any intrusion on your IP camera, but your IP camera's internal application firewall (part of the firmware) will protect your IP camera. All IP camera's have application firewalls. If you find that your IP camera does not have an application firewall, dont use it! Send it back and demand one that has. Most ports used on IP camera's are as follows (remembering that you have the power to change what port is what in the camera's GUI) HTTP = 80 TCPHTTPS = 81 TCPFTP = 21/22 TCPDDNS = Usually port 80 TCPSMTP = 25 TCPNTP = 123 UDPDNS = 53 UDP Regardless on how you setup your IP camera, these ports are open, if you add a stateful packet firewall, it will stop access to your camera as you have seen with the higher settings - working as intended - it stopped the 'intrusion', but stateful packet firewalls are 'stupid' because they dont know the difference between real (you) and not so real (someone else) packets. Application firewalls are not stupid, and they can see the difference between real packets and harmful packets as stipulated when you put the information into the IP camera's GUI. If the IP camera is connected to your internal network, getting a DHCP lease from the modem (modem in router mode), then NAT is also protecting it from the outside world. The best defence against any attack from the outside world is to not give it access to the outside world, and/or use a strong 64 hex password on your IP camera's HTTP server. If you are that concerned with security and control of your IP camera, throw it away and buy a proper CCTV (Closed circuit TV) setup where it is closed to any network intrusion. I have a 16 camera CCTV setup with several IP camera's (that are tied into the CCTV system, not open to the whole wide world on the internet) and have never logged any intrusion on my system in the 48 months I have had it installed. Yes I do have access to it via a mobile app that uses port knocking via encrypted packets, but it's application firewall used in the DVR's firmware - protects it from any intrusion.  Simply put, there is no need to use a stateful packet firewall if your devices already have an application firewall (and all of them do that have servers, this includes mobile phones, tablets, DRV's, PVR's, TV's, PC's etc). If you are paranoid enough to use a stateful packet firewall and then complain about your internet being slow, not working, dont come here and tell me about it, because you have already been advised against using one. Don't be stupid, use your common sense  I hope that this information helps in your decision to properly protect your IP camera and internal network 

  • HT1810 firewall settings for apple tv

    What firewall settings do I need for airplay for Mac OS Mavericks?

    From the article linked below:
    Firewall security settings
    If you use the firewall, make sure the following firewall security options have been set to allow AirPlay Mirroring to work:
    Choose Apple menu () > System Preferences.
    Click Security & Privacy, and then click Firewall.
    Click the lock icon to unlock it if it's locked, then type an administrator name and password.
    Click Firewall Options.
    Uncheck (deselect) “Block all incoming connections” checkbox.
    Select (check) the “Automatically allow signed software to receive incoming connections” checkbox.
    AirPlay Mirroring - About

  • New Email Settings and Westell Firewall Settings: May need adjustment to work

    I have a Westell 7500 wireless router at work.
    Old A90 modem and linksys wireless router at home.
    Made the email server setting changes at home on a desktop, laptop and two iPhones.  All worked fine.
    Took iPhone and laptop to work. Verizon email wound not work on either.  Outlook 2010 reported send/receive failure.
    Tried to setup Office desktop with new email server settings: could not do it: the test email would fail every time.
    After hours of research and frustration, EUREKA!
    The firewall settings on the Westell 7500 were set too high and blocking the ports that Verizon now wants to use for mail.
    Changed the firewall setting on the Westell router to "Minimum", clicked Apply and everything immediately worked.  The iPhone, the laptop and now I can make the changes to the desktop and it works with the new settings.
    So, yes, the router that Verizon supplied, using its recommended settings (Medium for firewall) blocks the ports that Verizon says we must now use for email.
    (Note that an alternative solution may be port forwarding the new port values - I did not try this.)

    Does anyone know if Verizon supplies the actual port setting changes needed on the Westell modems in order to make their new email port requirement changes work???
    I mean, they can't be serious with the whole "just change your firewall security to Low!"  instructions, can they...?
    I can't imagine a real internet company whose only suggestions for implementing server changes they've made are  "lower your security".
    Surely after all this time, they must have a page posted on their site somewhere that has complete instructions for the Westell firewalls which allow us to continue to use Verizon SMTP servers without lowering our firewall security across the board.....especially since their own rationale for making these changes is stated as being to increase security!
    If anyone finds a link to those instructions, please post it.

  • How do I change firewall settings?

    I have been having trouble for months logging into a website that I had zero problems with under my last provider (and am having no problems accessing using my laptop's Wi-Fi).  I've checked out just about every other possiblie cause and a friend thought it might be the firewall settings on my router (I have FIOS and the MI424WR Rev. F) and suggested I take a look at the settings and see what happens if I set them lower.
    Said friend, didn't however, tell me how to do that. How do I get to the firewall settings in order to do an experiment and see if it's the firewall that's causing my headaches? I'm getting desperate.

    Or how about a Bogon filter due to his current IP address now that he is on Verizon? The OP doesn't provide any info on messages he may be getting, so this is just a guess.
    Justin
    FiOS TV, 25/25 Internet, and Digital Voice user
    QIP7232, QIP7100-P2, IMG 1.9
    Keller, TX 76248

  • 10.4.10 Upgrade Problems/Firewall Settings

    Upgraded X-serve running 10.3.9 with latest Security patch 2007-07 to 10.4 install CDs, then ran Combo updater 10.4.10.
    Firewall settings disappeared.
    And when I say they disappeared--I mean the entire list of standard services with the little checkboxes under the Services tab is gone--I have no standard services to select from when setting up access for my local network and other groups. The entire field area (allow, description, ports, protocol) is BLANK.
    I COULD enter rules under Advanced--but that is a much tougher road to plough--I feel I am working blind and really don't won't to make errors in this area.
    Any way to get the firewall default settings list back? Is there a preferences file I can delete or something?

    Did you resolve this yet?
    I am having exactly the same problem. Yesterday I applied the Security Update 2007-007 and all my Address ranges and Firewall services disappeared. I'm also sure I can recreate everything, but hopefully there's a way of at least putting the default list of services back. It would almost be quicker to reinstall the OS.
    Hoping a second voice will help us attract the attention of someone who knows the answer.

  • Installing CC tells me to check internet connection and firewall settings etc won't setup so I can download apps

    Can anyone help with setting up my CC tells me to check my internet connection and firewall settings which are ok. I have a PC

    my internet connection and firewall settings which are ok.
    Most likely not, but since you haven't provided any proper system info and other technical details like what internet connection you actually use we can't advise specifically. Start by reading this:
    Sign in, activation, or connection errors | CS5.5 and later
    Mylenium

  • Unable to reach Adobe servers, Please check firewall settings and try again

    I have been a creative cloud customer since it started and I've never experienced such buggy software as the app manager. The customer experience is just shocking and I wish Adobe would just offer direct downloads for the software we need rather than use the app manager.
    I'm currently trying to install the latest versions of the programs but the app manager keeps showing "Unable to reach Adobe servers, Please check firewall settings and try again in a few minutes".
    I do not have any firewalls on my network.
    I've uninstalled all previous versions of the applications.
    The app manager will download a few % and then the message appears again. I click retry and it downloads another few % before showing the message again. I keep doing this until the program is fully downloaded and installed which take hours. Because I am able to eventually download the app, the error should be anything to do with my setup or internet connection as I've never had this issue before when installing adobe products.
    Is there a way we can bypass the app manager and install the programs directly? This is getting very annoying and I just need my apps to install without wasting days clicking the retry button.

    I'm having the exact same problem. Photoshop is stuck at 0%.
    Have the links for direct download changed? When I went to  http://prodesigntools.com/adobe-cc-direct-download-links.htmland then scrolled down the page to:
    Photoshop CC 2014 (64-bit)
    740 MB
    File 2
    801 MB
    File 1
    and then clicked on File 1 and File 2, I reached a page that says "You don't have permission to access "http://trials3.adobe.com/AdobeProducts/PHSP/15/win64/Photoshop_15_LS20_win64.7z?" on this server."

  • Creative Cloud is telling me "Unable to reach Adobe servers. Please check your firewall settings, and try again in a few minutes.

    Creative Cloud is telling me "Unable to reach Adobe servers. Please check your firewall settings, and try again in a few minutes.
    What do I do to access the cloud? I have checked my firewall settings to allow for me to be able to use adobe cloud. Any Suggestions?

    Try a different browser and/or turn your firewall off to download
    or
    A chat session where an agent may remotely look inside your computer may help
    Creative Cloud chat support (all Creative Cloud customer service issues)
    http://helpx.adobe.com/x-productkb/global/service-ccm.html

  • Is there a way to set my settings in the latest version of Firefox so I can still zoom using the trackpad?

    I have a MacBook. In previous versions of Firefox I could zoom in or out using my trackpad. Is there a way to set my settings in the latest version of Firefox so I can still zoom using the trackpad?

    Some gestures have been removed in Firefox 4.
    You can restore the zoom feature by changing the values of the related prefs on the <b>about:config</b> page.
    browser.gesture.pinch.in -> <b>cmd_fullZoomReduce</b>
    browser.gesture.pinch.in.shift -> <b>cmd_fullZoomReset</b>
    browser.gesture.pinch.out -> <b>cmd_fullZoomEnlarge</b>
    browser.gesture.pinch.out.shift -> <b>cmd_fullZoomReset</b>
    browser.gesture.pinch.latched -> <b>false</b>
    To open the <i>about:config</i> page, type <b>about:config</b> in the location (address) bar and press the "<i>Enter</i>" key, just like you type the url of a website to open a website.<br />
    If you see a warning then you can confirm that you want to access that page.<br />

Maybe you are looking for