How to Configure ZoneAlarm Free ( version 3.1+) for StarBand 
 
Remember this is only the basics- the version you see here is 3.1. Newer versions might look a bit different but basically the ip addresses you need to add are the same and so are the options, but they might just be in a different place.

For additional info, you can ask for help at StarBand's Newsgroup or you can email me at memberschat@starband.net


StarBand also has a website for setting up a firewall which you can use in conjunction with my website at: http://www.starband.net/support/SearchResults.asp?url=4110626031233.html
(you must log in first to view it)
 
 

Also, the ip addresses given in the  FIREWALL SECTION - Zones Tab, can be used in any Firewall Program.

You should Print this Faq BEFORE you install and configure your Firewall Program, so you can follow the instructions, step by step.

 
 

ZoneAlarm™ is a widely-used personal firewall, a free version of which is currently available from its manufacturer, Zone Labs, Inc., for personal use. It is available for download at www.zonealarm.com; there are a free version and a "Pro" version, and instructions are given for both. ZoneAlarm is a trademark of Zone Labs, Inc.

StarBand Member Services & Support does not provide support for nor specifically endorse any firewall products. To obtain support for your firewall software or hardware product, please contact the vendor directly. This document is for reference purposes only--If you choose to use ZoneAlarm firewall software with your StarBand service, this document provides important tips for avoiding some potential problems.

Detailed instructions for configuring ZoneAlarm 3.1+ (free version)

ZoneAlarm Free is a basic version of ZoneAlarm Pro (without the added features) and can be used as a good starting point for a basic Firewall program.  When configured correctly it will put you in Stealth Mode (blocked from the outside world)

  1. After downloading the ZoneAlarm installation file, double-click the file to run the installer.
  2. After entering your e-mail information and doing the initial install, you'll see this "survey" screen. The values shown below are typical. Click Finish.



  3. After installing ZoneAlarm, it will bring up a wizard with configuration instructions; you may choose to step through this wizard or simply cancel it.

  4. After completing this wizard or cancelling, ZoneAlarm will pop up a window called "ZoneAlarm tips." Check "Don't show this message again" and click OK.



  5. Now you'll probably see a couple of alerts as the StarBand software tries to access the Internet. For alerts of this type, you should check "Remember this answer the next time I use this program" and click Yes.



  6. Depending on your StarBand model, you may see similar program alerts for RPA, NettGain, Windows Update, Microsoft (MFC) Software Updater and other common applications, which you should permit in a similar manner. 

Here is how you would set up ZoneAlarm Free:

Overview


Firewall-Main Tab
In the older versions of ZA Free (before 3.1) you could only use the Med/Low settings. In the 3.1+ versions you can now use the High/Med settings as you see below:


Firewall-Zone Main-Advanced
Make sure you check what is circled below or you will find you will have a Black MC icon. 

**In the most current ZoneAlarm Free program there are 6 boxes instead of the 5 you see here. Make sure you have all 3 that are circled below "checked" especially the one that says "Allow uncommon protocols at high security".  It might not be in the same place as shown below.**



Firewall-Zones Tab

This tab allows you to add specific IP addresses, hosts or sites, IP ranges or subnets, and designate them as trusted or blocked. Clicking the "Add" button allows you to add a Host/Site, IP Address, IP Range or a Subnet. You can then choose to put the entry in as Trusted or Blocked and enter a friendly description for the entry.

These are the ip addresses (in the picture below) that are needed For Mission Control to be able to enter the Internet and for the icon to stay Green.  If you are networking you can put the LAN ip address you see below, if you are not, you do NOT need it.

These ip address can be used in any firewall program, not just ZA!

**note** If ZoneAlarm doesn't put in your ip address you can get it by Right Clicking on the MC Icon. Highlight  & click "Network Status"/Report Tab. Go to NetWork Parameters / Modem Parameters/PCIP Address. Your ip address will be here.

Or you can open a Command Prompt and type at the prompt: ipconfig and it will show your ip address.

Ethernet Card (or Starband if you are on USB)  148.64.x.x /255.255.192.0  Internet Zone
(**note** your ip address will have real numbers)

Modem Address      192.168.255.252     Trusted Zone

My IP Address          148.64.x.x (yours will be filled in with numbers)   Trusted Zone

You can also additionally put in the DNS Server Range into the Trusted Zone, if you find you cannot connect. You get this by "Right Clicking" on the MC icon. Highlight "Network Status" & click on it. Go to the "Report tab".  Go to "Local Computer Parameters. Scroll down till you see DNS Server Ip Address (2x). Your range might be 148.78.249.200-148.78.249.201.

You can also put in your HPA Address into the Trusted Zone.  if you find you cannot connect (every cluster has a different one)-Do the same as above, only look for "StarBand Software Parameters"- "HPA Address"

Also, if you are using an Ethernet or other LAN adapter for a local network (using ICS or WinProxy), you should add the subnet (192.168.0.0/255.255.255.0) to the Local Zone Contents as well. You should see it under the Networks section of Local Zone, and it simply needs to be checked.

Program Control-Programs Tab
 Here's a typical list of programs from a "stable" StarBand Model 360 system. You can see your list by clicking Programs on the ZoneAlarm screen. All the circled programs are what need to be checked for Mission Control to run properly.

This tab lists programs. It allows you to add protected programs, set the zones the program can access, & set the program to act as a server. You click the "Add" button, and then uses a file dialog box to browse to the application you wish to add.

After adding a program to the list a line will be added to the list for the program.

The line will show 4 question marks (?), 2 for access (trusted or Internet zone) and 2 for Server (trusted or Internet zone). Clicking the question marks drops a menu where you can choose to allow access, block access, or prompt for permission.

When alerted, be sure to allow access to the programs listed below:

 






Alerts & Logs-Main Tab
This category controls how Zone Alarm will handle alerts and logging.
This section consists of 2 tabs, Main and Log Viewer

The main tab allows you to set an alert level for informational (non-program) alerts. An example of this type of alert would be an alert telling you you are being pinged. Program alerts are always shown because you require you to grant or deny permission to the Internet.

The second section allows you to enable or disable logging. The Program Logging section allows you to decide which alerts will be logged. This can also be set to High (log all program alerts), Medium (log only highly rated program alerts) or Off

 


Alerts and Logs-Log Viewer Tab
This will tell you which ip addresses are trying to access your computer that ZoneAlarm is blocking.


EMAIL SECTION- Main tab

ZoneAlarm protects email by putting suspect attachments in quarantine.
The main tab uses an on/off radio button to enable/disable email protection. It is your choice to check it as "off" or "on" depending on which antivirus program you are using.

EMAIL SECTION- Attachments tab

This tab presents a list of attachment types and file extensions ZoneAlarm will quarantine by default. These range from applications (.exe) to Windows Help Files (.hlp). You also can add file types and extensions you choose.

At this point you should reboot (Click Start->Shut Down, select Restart option) your PC. When your PC comes back up, you may see a couple more permission requests--be sure to allow them. After this, you should see fewer alerts.

Please note that firewalls such as ZoneAlarm can cause occasional problems with games and streaming media performance on client PCs.

These are great sites to test if your firewall is doing its' job:

http://grc.com/default.htm  (Scroll down till you see "Shields Up" then click it)
Make sure you also click on "Probe My Ports"

http://security.symantec.com (Scan for Security Risks)

http://www.aumha.org/a/noads.php

Here is a great site if you run into other problems with the Free Version of ZA
http://www.computergripes.com/ZoneAlarm.html

I would  like to thank Brian at Starband for helping me create this faq.