jumboconcussion wrote:I was wondering if someone could explain the protected rules at the top of the LS configuration, and why I would enable or disable them?
What are ICMP/UDP incoming connections? I know the right hand side of the LS configuration provides a little explanation for both, but I would like some more information on it. Would my internet experience suffer if I were to disable them? What's the risk, in terms of malware/remote access, if I kept them enabled?
Also - allowing outgoing or incoming connections to my local network - why would I or wouldn't I need to do that? Does it open me up to infecting my system if other machines on the network are infected (especially if I'm using public wi-fi)? I'm on the home wi-fi and I tried testing it out just then by disabling the incoming connections from local network rule. Within 5 minutes LS notified me that my Macbook (system, not me) tried to establish incoming connections to mDNSResponder, port 5353:
- from the IPv4 address associated with my Macbook on the home wifi
- from fe##::####:#$$$:$$$#:##$$
- from fe##::$$$$:##$$:$$#$:##$#
Port 5353 is used by mDNSResponder for Bonjour and what's called "advertising services". I'm not sure exactly what that means, other than communication between network devices. People disabling mDNSResponder's bonjour functions find that the network printer won't work, for instance.
Users browsing this forum: No registered users and 10 guests