Welcome to the MacNN Forums.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

You are here: MacNN Forums > Software - Troubleshooting and Discussion > macOS > Firewall settings ?

Firewall settings ?
Thread Tools
MacNNUK
Grizzled Veteran
Join Date: Aug 2007
Location: U.K.
Status: Offline
Reply With Quote
Mar 14, 2009, 03:18 AM
 
Simple question really, in Sys Prefs Security, which of the following three alternatives turns the OSX Firewall on ?

Is the first one default OFF ?

What's the difference between two and three ?









I've read ( and re-read) various articles and other posts, and I'm not really any the wiser.

Do I need to add anything in the access box for two and three ?

My internet connection is Broadband, using OS 10.5.6
( Last edited by MacNNUK; Mar 14, 2009 at 06:12 AM. )

iMac Intel Core i5, 2.5GHz, 4GB RAM, 500GB 21.5" Monitor 10.8.3.
iMac 17" 2.0ghz Intel Core 2 Duo w 3gb memory (White one) 10.6.8.
Internal 500gb / 8x external HDD's 250GB - 3TB (4x Time Machine)
     
Simon
Posting Junkie
Join Date: Nov 2000
Location: in front of my Mac
Status: Offline
Reply With Quote
Mar 14, 2009, 03:34 AM
 
1 is off.
2 is nobody really knows.
3 is on and on a per-app basis.

Chose 3. When for the first time an app requests an incoming connection you will be asked if you want to grant access. Consider if that app needs access (ssh for example) or if it's just phoning home.

BTW, here's a good article on Leopard's Firewall. And here's the follow-up.
( Last edited by Simon; Mar 14, 2009 at 03:42 AM. )
     
MacNNUK  (op)
Grizzled Veteran
Join Date: Aug 2007
Location: U.K.
Status: Offline
Reply With Quote
Mar 14, 2009, 03:45 AM
 
Originally Posted by Simon View Post
1 is off.
2 is nobody really knows.
3 is on and on a per-app basis.

Choose 3. When for the first time an app requests an incoming connection you will be asked if you want to grant access. Consider if that app needs access (ssh for example) or if it's just phoning home.

BTW, here's a good article on Leopard's Firewall. And here's the follow-up.
Thanks, I've now selected option three.

And thanks for the links.


Do I need to add or remove anything from the access selection box ?
( Last edited by MacNNUK; Mar 14, 2009 at 06:13 AM. )

iMac Intel Core i5, 2.5GHz, 4GB RAM, 500GB 21.5" Monitor 10.8.3.
iMac 17" 2.0ghz Intel Core 2 Duo w 3gb memory (White one) 10.6.8.
Internal 500gb / 8x external HDD's 250GB - 3TB (4x Time Machine)
     
Gavin
Mac Elite
Join Date: Oct 2000
Location: Seattle
Status: Offline
Reply With Quote
Mar 14, 2009, 05:45 AM
 
The little question mark at the bottom of the window will fire up the help browser/manual.

Interestingly the help does not quite match the control. it says:
To have your firewall prevent connection of all services and applications, select “Block all incoming connections.”
which is not actually one of the options
You can take the dude out of So Cal, but you can't take the dude outta the dude, dude!
     
MacNNUK  (op)
Grizzled Veteran
Join Date: Aug 2007
Location: U.K.
Status: Offline
Reply With Quote
Mar 14, 2009, 06:07 AM
 
Originally Posted by Gavin View Post
The little question mark at the bottom of the window will fire up the help browser/manual.

Interestingly the help does not quite match the control. it says:

To have your firewall prevent connection of all services and applications, select “Block all incoming connections.”

which is not actually one of the options
That was one of the things that confused me !

Having selected option three, when I opened Excel, after rebooting, it asked me if I wanted to accept external connections, so I said yes.

Now this appears in the access box, so presumably these will be added to as I accept or deny external connections.



Interesting though, Mail, Camino, NetNewsWire (RSS) and Firefox did not ask me, I would have expected they would being specific Internet apps.

iMac Intel Core i5, 2.5GHz, 4GB RAM, 500GB 21.5" Monitor 10.8.3.
iMac 17" 2.0ghz Intel Core 2 Duo w 3gb memory (White one) 10.6.8.
Internal 500gb / 8x external HDD's 250GB - 3TB (4x Time Machine)
     
MacNNUK  (op)
Grizzled Veteran
Join Date: Aug 2007
Location: U.K.
Status: Offline
Reply With Quote
Mar 14, 2009, 06:26 AM
 
Originally Posted by Simon View Post
1 is off.
2 is nobody really knows.
3 is on and on a per-app basis.

Choose 3. When for the first time an app requests an incoming connection you will be asked if you want to grant access. Consider if that app needs access (ssh for example) or if it's just phoning home.

BTW, here's a good article on Leopard's Firewall. And here's the follow-up.
Reading the second link, it suggested Waterroof,
http://www.hanynet.com/waterroof/

Do I need this, will it work in conjunction with Mac Firewall, it does look a little hard to set up for myself ?

iMac Intel Core i5, 2.5GHz, 4GB RAM, 500GB 21.5" Monitor 10.8.3.
iMac 17" 2.0ghz Intel Core 2 Duo w 3gb memory (White one) 10.6.8.
Internal 500gb / 8x external HDD's 250GB - 3TB (4x Time Machine)
     
OreoCookie
Moderator
Join Date: May 2001
Location: Hilbert space
Status: Offline
Reply With Quote
Mar 14, 2009, 08:01 AM
 
MacOS X has two built-in firewalls: a new application-based firewall (the one you can configure in the System Prefs) and ipfw, the one Apple used till Tiger. There are several graphical configuration utilities for ipfw, I recommend Flying Buttress instead of Waterroof.

Switch off the application-based firewall before configuring ipfw, though.
( Last edited by OreoCookie; Mar 14, 2009 at 09:24 AM. )
I don't suffer from insanity, I enjoy every minute of it.
     
MacNNUK  (op)
Grizzled Veteran
Join Date: Aug 2007
Location: U.K.
Status: Offline
Reply With Quote
Mar 14, 2009, 09:12 AM
 
Originally Posted by OreoCookie View Post
MacOS X has two built-in firewalls: a new application-based firewall (the one you can configure in the System Prefs) and ipfw, the one Apple used till Tiger. There are several graphical configuration utilities for ipfw, I recommend Flying Buttress instead of Waterroof.

Switch off the application-based firewall before configuring ipfw, though.
Excellent tip, thanks

Can both Firewalls be used at the same time, if not, which one is recommended.
( Last edited by MacNNUK; Mar 14, 2009 at 09:24 AM. )

iMac Intel Core i5, 2.5GHz, 4GB RAM, 500GB 21.5" Monitor 10.8.3.
iMac 17" 2.0ghz Intel Core 2 Duo w 3gb memory (White one) 10.6.8.
Internal 500gb / 8x external HDD's 250GB - 3TB (4x Time Machine)
     
dimmer
Mac Enthusiast
Join Date: Feb 2006
Status: Offline
Reply With Quote
Mar 14, 2009, 09:53 PM
 
Mail, Camino etc. don't require/allow inbound connections: they open the connection, and data is returned along (basically) the same path they've opened. I'm not at all sure why the Office '08 products need to allow inbound connections -- anyone have an answer to that?
     
MacNNUK  (op)
Grizzled Veteran
Join Date: Aug 2007
Location: U.K.
Status: Offline
Reply With Quote
Mar 14, 2009, 10:12 PM
 
Originally Posted by dimmer View Post
Mail, Camino etc. don't require/allow inbound connections: they open the connection, and data is returned along (basically) the same path they've opened. I'm not at all sure why the Office '08 products need to allow inbound connections -- anyone have an answer to that?
To check for / allow updates ?

iMac Intel Core i5, 2.5GHz, 4GB RAM, 500GB 21.5" Monitor 10.8.3.
iMac 17" 2.0ghz Intel Core 2 Duo w 3gb memory (White one) 10.6.8.
Internal 500gb / 8x external HDD's 250GB - 3TB (4x Time Machine)
     
   
Thread Tools
 
Forum Links
Forum Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Top
Privacy Policy
All times are GMT -4. The time now is 08:30 AM.
All contents of these forums © 1995-2017 MacNN. All rights reserved.
Branding + Design: www.gesamtbild.com
vBulletin v.3.8.8 © 2000-2017, Jelsoft Enterprises Ltd.,