arcanum

I think, when firewall is in automatic mode, ESET allows all outbound connections, however, it checks outbound connections against ESET blacklisted IPs(botnets, etc) database, and will alarm if outbound connection match their database. And ESET browser add-on will check that too. I'm using Netcraft chrome browser extension with ESET browser extension and they work pretty good together, sometimes Netcraft alerts about fraudulent sites and vice versa. So why not using them both. If you want to control all outbound connections, i recommend to switch the firewall to learning mode for one week or so, then switch to interactive mode. That's what i did.

ESET keylogger protection only works with browsers. So it is not "system-wide" anti-keylogger, so it does not protect, for example, when you log in to Steam, or any non-browser based logins. That's why i'm using third-party system-wide anti-keylogger, which scrambles anything you type. I hope that ESET will add a feature, where you can add your favorite, like steam.exe to its keyloggin protection.

There's about 1% of websites that does not work with SSL/TLS scanning enabled. They just timeouts. I'm interested what might be a reason for that. Does SSL/TLS scanner do something (handshake) that prevents the website to load?

It's not a solution, but temporary solution while waiting ESET engineers to fix it out. 🙂 And everyone should know that never ever permanently disable any security components.

Go to settings and disable SSL/TLS scanning. It's not the first time that ESET SSL/TLS scanning "breaks" some websites. The same happened to me on some sites too.

Hello, Is there a setting to get firewall popups more "informative" ? I mean, in which port, resolve ip where it is connecting to etc? AS you can see, 37 messages. And when you do a firewall rule for steam.exe and steam webhelper.exe to allow any for any(like chrome), steam cannot load. It loads, but "no connection".

@itman, thanks for the reply. But like i said, i made a custom firewall rule for steam.exe and webhelper exe: Any port with any protocol. Even so, with learning mode, it generates a lot of "allowed", and i can see them in firewall rule table. So it generates firewall rules, but does not remember them. Maybe a bug? Because firewall works just fine with many other applications, but on my case, it does not save them when start steam.

Hello, Just installed latest version (trial version) of Eset SSP. I set the firewall to "learning mode". It creates firewall rules automatically for example, VLC, chrome, etc. As it should. Then i ran STEAM, played some games etc basic things, and Eset created a lot of firewall rules. As it should. But when i switched firewall profile to "interactive" and then started STEAM, i get about 20 firewall pop-ups that Steam.exe and steam webhelper wants to connect to internet. So, it's a "click-fest" to allow then all (again). OK, then quitted Steam and started it again. The same 25 pop-ups came again....again and...again. What i tried: 1. Remove all steam.exe and steam webhelper from firewall rule tab made by learning mode 2. Made a custom firewall rules for steam.exe and webhelper exe, where TCP/UDP(or any protocol) is allowed for any port local/remote. 3. Moved them to the top the firewall rules(priority) and then saved the firewall settings. 4. Started steam again in firewall interactive mode and again...25 popups This only happens with Steam. Can someone please, help me with this?

How about running smart security firewall in learning mode for a while? If Flex LM causes IDS warnings of something like that, you can check IDS exceptions and then make a custom rule for that and then move the rule first on the list. Flex LM is a one of the modern software protection schemes around. It uses many techniques to contact license server(s).

Hello, When browsing on the net as usual, one site caused Fbook.JS trojan. ESS8 made an popup, but allowed the site load and that javacript to load. After that, when i check ESS8 firewall logs, and with in an hour, there are over 400 UDP attempts from random ip's to port 53750. Thats was my utorrent port. My utorrent was even running. I've seen this before, when Eset pop up comes "disconnect" the site and malware loads newerheless As for the memory protection of ESET, it's better than rivals one. I've read that hackers use ESET because of that. Kindest regards, -arc