This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Cuireadh an snáithe seo sa chartlann. Cuir ceist nua má tá cabhair uait.

Why allow unrestricted incoming access to Firefox in the firewall settings?

  • 1 freagra
  • 5 leis an bhfadhb seo
  • 1 view
  • Freagra is déanaí ó fbg00

AnonymousUser
AnonymousUser
more options

Quote from http://support.mozilla.com/en-US/kb/Configuring%20ZoneAlarm%20Free%20Firewall and similar help pages:

"Ensure that Firefox has a green check mark for each each category in the list - Access-Trusted, Access-Internet, Server-Trusted, Server-Internet: click on the ? icon for each category, and then select Allow."

DNS lookups are "connectionless" UDP. Outgoing TCP connections establish what incoming data is allowed. While (hopefully) a border firewall is in place, allowing all incoming connections at the computer's software firewall seems dangerous. Can a security expert please share a little rationale for this advice?

Quote from http://support.mozilla.com/en-US/kb/Configuring%20ZoneAlarm%20Free%20Firewall and similar help pages: "Ensure that Firefox has a green check mark for each each category in the list - Access-Trusted, Access-Internet, Server-Trusted, Server-Internet: click on the ? icon for each category, and then select Allow." DNS lookups are "connectionless" UDP. Outgoing TCP connections establish what incoming data is allowed. While (hopefully) a border firewall is in place, allowing all incoming connections at the computer's software firewall seems dangerous. Can a security expert please share a little rationale for this advice?

All Replies (1)

fbg00
fbg00
more options

For what it's worth, I recently started getting alerts from McAfee Internet Security suite that Firefox is attempting to allow incoming TCP connections. Unfortunately the log files are dismally un-informative so I haven't yet been able to determine the port, which plugin if one is involved, etc. I'll have to mess around with it a bit. I'll post an update if I find something interesting.