Jump to content


  • Posts

  • Joined

  • Last visited


0 Neutral

Profile Information

  • Gender
    Not Telling
  1. That was my initial thought as well, but in my experience, if svchost is too restricted I lose internet connectivity completely. So this time I let OA decide what svchost should be allowed to do, and it decided [automatically, with no prompting] to allow nearly every port and protocol. One would think that OA would know how to safely deal with a core Windows component. Is there a better way?
  2. svchost already had virtually unfettered access [automatically], including port 53 [in and out], but it wasn't until I opened port 53 for all programs [per catprincess] that the Xbox was finally able to connect. It works fine this way, but I can't help but think that there has to be a more elegant solution than completely opening a port. What really bothers me is not understanding why it must be done this way. And yes, the Xbox does get an IP address [static, for my convenience, but DHCP works too]. And I don't much care about the time query as the Xbox keeps time remarkably well on its own. I appreciate you taking the time to offer your insights, judson. Thanks.
  3. I don't understand IPv6 well enough to debate it, but that doesn't sound quite right to me. Could you please explain it? Thanks in advance.
  4. catprincess, I very much appreciate you taking the time to help me. Thanks! In case this thread is helpful to anyone suffering from similar issues: allowing svchost to use port 53 did NOT work, although I don't understand why. Opening port 53 for all programs DID work, however. So if anyone knows which program is actually acting as the proxy during ICS, I would like to know [mostly for my own edification].
  5. As far as I can tell, when ICS is working, it's svchost.exe that appears to be making the connections on behalf of the shared computer. Since svchost was already automatically allowed to do pretty much anything it wants [such as phone home to Microsoft repeatedly], why do I need to allow "All Programs" to have DNS access? FTR: Opening port 53 for all programs does fix the problem, but it strikes me as a heavy-handed solution. I am not trying to be difficult, or rude; I just like to understand how things work. Also, I don't understand why the blocked DNS query was not logged. Shouldn't OA be logging everything that's blocked? And why no pop-up or prompt?
  6. Thanks for the reply catprincess, but if I allow "All Programs" access to port 53 [DNS], isn't that tantamount to giving internet access to everything?
  7. I'm having problems getting Internet Connection Sharing [iCS] to work. The setup: it's a laptop running Windows 7 x64 SP1 that gets its internet via a built-in WiFi card [this part works fine], and shares this connection with an Xbox 1 over a wired [ethernet] connection [this doesn't work]. This setup worked well before installing Online Armor, but now silently fails. The OA "Firewall Status" window does not show any blocked connections, and neither does the log. Under Firewall Setting - Rules - Interfaces: the local area connection is set to "Trusted" and under the Computers tab the IP / MAC address of the Xbox is marked as Trusted. There are no pop-ups [either balloons or dialog boxes], even though those are enabled. Interestingly enough, I can still initiate and use an FTP connection to the Xbox with no problems, so there's at least some communication possible. If it helps, the Xbox is trying a DNS lookup [port 53] and a time query [sNTP, port 123], which both fail, after which it gives up. [Yes, I've tried rebooting.] Any ideas?
  • Create New...