I’ve just started to run Sygate. Since I’m new to how these various security programs work, I’m scratching my head with some of the pop-up windows whether to allow something access or not. If there’s a specific source to look this information up, please let me know, or if here work, great. Thanks!

Here’s a sample:

Bonjour Service – Trying to broadcast
Generic Host Process for Win 22 Services – Using remote port 1900
Generic Host Process for Win 22 Services – trying to connect to using remote port…
NDIS User Mode I/O Driver – Being contacted from remote machine
Intel WLAN Packet Driver – Contacted from a remote machine

Rules of thumb. Let things out if known and anticipated - usually as you fire-up your browser or other internet seeking application. Keep incoming out (though there are exceptions - once again known and anticipated). You won't go wrong security-wise if you deny though you can lose function. If in doubt deny and only make rules stick (be remembered) once you are sure about them.

Paul...

Thanks for your reply.

>> Keep incoming out (though there are exceptions - once again known and anticipated).

Us young'ins (computer wisdom/experience that is...) scratch our heads trying to decode/understand what is "known, "unknown," & "exceptions."

Sygate Info (http://bellsouthpwp.net/i/k/ikpe/SygateBasics.html)
MS Info (http://www.microsoft.com/technet/security/guidance/networksecurity/firewall.mspx)

Typically one would allow outside access to one's security applications and to messaging programs and other internet aware programs that one might reasonably expect to be listening for input. Unknown, ad hoc, out of the blue attempts to connect to unspecified applications or through strange ports or sequences of ports should be treated as suspicious. I don't know any other way of saying what and what not to let in. If in doubt deny access and don't create a rule till you have checked things out with experts. If some internet aware application then fails to work you might consider letting it in the next time. If everything still works as expected then continue to keep it out and make a rule to do so.

Again...

Thanks Paul & for the two reference sites.

~ Best ~