Installed cable modem yesterday >> worked great through out night & into this AM >> installed Zone Alarm >> now the modem won't connect for *any* program (not Opera, Outlook Express, IE or AG Satellite) EVEN AFTER UNINSTALLING ZA through the windows control panel. Registry problem? Can you tell me how to fix it?

The following is LONG, but complete, as I had to copy and paste from my document database, as I do not have the oroginal web pages this info came from: Zone Alarm has a HELP page at their web site. If their program is configured properly, this should not happen. Also, see the following sites for more guidelines on how to configure ZA: http://www.moonlake.net/security/docbza1.htm Zone Alarm Config HELP 1. On what types of connections can I use ZoneAlarm and ZoneAlarm Pro? Both ZoneAlarm and ZoneAlarm Pro will work on any type of Internet connection, dial-up modem, cable modem, and DSL modem as well as any LAN connections with firewalls and proxies. 2. DHCP. Here are some things you may need to do if you are having problems obtaining or renewing an IP address with ZoneAlarm Pro running. It may not be necessary to do all of the following: Add the DHCP server's address to your Local zone, with Local zone set to "Medium" security. If there is only one DHCP server, or very few, this may be a reasonable solution. It may be easier to use the name[s] of your ISP's DHCP servers if there are more than just a few. Add the address of your gateway to your Local zone, with Local zone set to "Medium" security. If the DHCP server is in a different subnet, the gateway forwards the messages from the server. Adding the gateway to your Local zone can allow your computer to accept the message with the IP address. Contact your ISP to determine what the specific requirements are for a user's computer to accept DHCP packets. If you are told by your ISP to not use a firewall then you would need to speak with a technician who understands network security requirements. 3. Broadband Heartbeat. Some ISPs check periodically to see if their dial-up customers are still connected. If it appears that you are not there, such an ISP will disconnect you so that your IP address can be given to someone else. For ZoneAlarm Pro users, there are several solutions. One is to set Internet security to "Medium." You can set the security level for the Internet zone in ZoneAlarm Pro's Security panel. If your ISP checks your connection by pinging you, then this allows the ping but the firewall still blocks NetBIOS access to your computer from the Internet. In addition, you remain protected by ZoneAlarm's unique application control feature. Only those applications that you approve can connect to, or accept connections from, the Internet. The second solution is to identify which of your ISP's servers are being blocked by ZoneAlarm Pro, and to add them to your Local zone. This has the advantage of working even if your ISP checks your connection by doing a NetBIOS query, and it allows you to keep your Internet security setting at "High." To identify the server your ISP uses to check your connection, wait until your ISP disconnects you. Click on the "Alerts" button and review the last several alerts in the "Current Alerts" pane. See if you can identify the alert that corresponds to the time when you were disconnected. Note the address and add it to your Local zone. The procedure is described below. Here's how to add a trusted Host/Site or IP Address to your Local zone: - Step 1. Click the "Security" button to view the expanded Security panel. - Step 2. Click "Advanced." - Step 3. Click "Add." If you know the domain name of the site: - Step 4. Select "Host/Site." - Step 5. Under "Description", enter a description for the site. - Step 6. Under "Host/Site," enter the domain name for the site. For example, "session2.callwave.com" (no quotes). - Step 7. Click "Next." - Step 8. Click "Finish." - Step 9. Click "OK." OR, if you know the IP address: - Step 4. Select "IP Address." - Step 5. Under "Description", enter a description for the site. - Step 6. Under "IP Address," enter the IP address of the site. For example, "127.0.0.1" (no quotes). - Step 7. Click "OK." After adding the server to your Local zone, redial your ISP and see whether you now remain connected. You may have to repeat this procedure for several server IP addresses. You can also contact your ISP and ask for the IP addresses of the servers they use to check your connection. ZoneAlarm Pro offers a third option, not available to users of regular ZoneAlarm. ZoneAlarm Pro users can specify that pings be allowed in the Internet zone, without lowering the Internet security level to "Medium." To do this: - Step 1. Click "Security." - Step 2. Select "Advanced." - Step 3. Select "Internet Zone Custom Settings." - Step 4. Under "High Security Settings for Internet Zone," locate the line for "Allow incoming ping (ICMP Echo)" and check the box next to it. If your ISP is checking your connection using something other than ping, and if you can determine from your alerts (or by contacting your ISP) what port or protocol is being used, then the "Internet zone Custom Settings" become a very useful tool. You can use the "Internet zone Custom Settings" to configure your "High" security to allow only what is needed for your ISP to verify your presence on the Internet, without having to lower your overall security. ZoneAlarm and ZoneAlarm Pro are personal firewalls designed to protect the individual computer they are installed on. This can include a PC workstation attached to a LAN. By default, ZoneAlarm does not include the adapter subnets that correspond to your network cards as part of your Local Zone. Therefore, computers on your Local Area Network will not be visible to each other. In ZoneAlarm, to include the subnets of network adapter cards in your Local zone: - Step 1. Go to the Security panel. - Step 2. Select "Advanced." - Step 3. Under "Adapter Subnets," locate the network adapter that corresponds to your network and check the checkbox. - Step 4. Click "Apply." - Step 5. Click "OK." In ZoneAlarm Pro: - Step 1. Go to the Security panel. - Step 2. Select "Advanced." - Step 3. Select "Local zone Contents" tab. - Step 4. Under "Adapter Subnets," locate the network adapter that corresponds to your network and check the checkbox. - Step 5. Click "Apply." - Step 6. Click "OK." If you have resources such as printers attached to your computer that others on the network need access to we recommend that you disable the "ZoneAlarm Automatic Lock" feature via the Lock Panel. When engaged, the Automatic Lock will block access to these resources from the Local zone. On occasion applications or services that are configured with server privileges start before ZoneAlarm. In these instances, these applications will not be granted server privilege and ZoneAlarm will block them. To resolve these instances, you will need to quit the application, or service, in question and then start it again. 4. Installing ZoneAlarm Pro on a Server Zone Labs does not officially support ZoneAlarm Pro installation on servers at this time. ZoneAlarm Pro was designed specifically for client applications. We will provide any developments regarding server support on our Web site. Some of our users have run ZoneAlarm Pro successfully on a server. However, it's important to note that a server's multiprocessing and multithreading features, combined with the higher amount of network (or Internet) traffic that a server must handle, will require a considerable amount of system resources. ZoneAlarm Pro will monitor all of these networking resources, which could ultimately cause adverse effects on your server. If you plan to attempt installing one of our firewall products on a server, use only ZoneAlarm Pro with its advanced features. Additional items to note: (A reminder: Using ZoneAlarm Pro on a server is not supported by Zone Labs at this time. Running ZoneAlarm Pro on a server is at your own risk.) ZoneAlarm Pro ONLY protects the machine that it is installed on. Additionally, Web servers are designed to be accessible to the Internet, and ZAP will NOT prevent things such as Code Red or Nimda that come in via a port you have opened up. Running a personal firewall is not a substitute for keeping your OS (i.e. security patches and service packs), your server software (i.e. IIS) and antivirus software updated at all times. Some things to consider should you decide to set up ZoneAlarm Pro on a server: Remote installations: When you first bring up a new ZAP installation, the remote connection will be blocked by default, so you will be unable to give your own connection permissions. Do not attempt to install ZoneAlarm Pro across a network. For information on what specific ports need to be opened, and what access programs and underlying services) may require, you will need to refer to the manufacturer's documentation. To open specific ports : 1) From the Security panel , click Advanced. 2) Click the Internet Zone Custom Settings Tab. 3) Under "High Security for Internet Zone", scroll down to where these settings are listed: - Allow incoming UDP ports - Allow outgoing UDP ports - Allow incoming TCP ports - Allow outgoing TCP ports 4) Check the box beside the desired setting. 5) A field will appear below, where you can type in a port or range of ports. 6) Click OK. Because ZoneAlarm Pro was designed for a user to personally monitor and respond to alerts and popup messages, you will need to modify the default settings. In order to allow your server to accept connections when ZoneAlarm Pro is left unattended: 1. If your server only accepts connections from a few sources (such as an e-mail host), add those addresses or subnet(s) to the trusted Local Zone. Then you only need to place a green check for the Local setting, and place a red "X" for the program's Internet setting. However, if your server accepts connections from systems in the Internet Zone, then you also need to place a check mark under the "Allow server" column for the Internet Zone. If you place a check mark in the "Allow server" column, ZoneAlarm Pro automatically places a check mark under the "Allow connect" column for the same zone. This is to allow the program requiring server rights the ability to access that zone. Any application on your computer, including server applications, cannot have more access rights to the Internet Zone than to the Local Zone. For example, a server cannot have access to the Internet zone if it does not have access to the Local zone. However, you can restrict an application to only connect to the Local Zone and not the Internet zone without allowing server rights. 2. In the Programs panel, give all programs definitive settings for access and server permission. Do not leave any programs with a setting of "?". When a program attempts to access the Internet, and it has the default setting of "?", ZoneAlarm Pro will display a popup message asking if you want to allow the program to access the Internet. Make sure that any program that needs access or server rights has it -- otherwise, it will be blocked from access until the popup is cleared. These defaults apply to both new and repeat programs. 3. Do NOT use the Lock or Stop button - these will block network traffic and cause application problems and access issues. 4. Do NOT check the boxes to Block Servers in any zone that needs access to/from the server. - If any servers in the Internet Zone need access to your server, you will need to UNcheck the box to "Block Internet Servers". - If you have added any servers to your trusted Local Zone, you will need to UNcheck the box to "Block Local Servers". In many cases, you can keep the Internet Zone set to High security -- with "Block Internet Servers" checked -- if you add all the servers to your trusted Local Zone that your system accepts connections from. 5. Be sure to set the default to Include or Exclude New Networks when detected (this is found on the Advanced Security tab). Do not leave it set to "Ask" as this will also leave a popup window. You can check your Local Zone Contents tab to ensure that the networks which have already been detected are included in (or excluded from) your trusted Local Zone, as needed. A network included in the Local Zone will be checked. 5. How do I set up ZoneAlarm Pro to work with a Proxy Server? To enable remote computers to connect through the proxy it is necessary to input the proxy server IP address into your trusted Local zone. - Step 1. Go to the Security panel. - Step 2. Select "Advanced." - Step 3. Click "Add." - Step 4. Click "IP Address." - Step 5. For "Description," enter something of your own choosing. - Step 6. Enter the IP Address. - Step 7. Click "Next." - Step 8. Click "Finish." - Step 9. Click "OK." 6. How do I set up ZoneAlarm Pro to work on an ICS system? On the ICS gateway machine, ZoneAlarm Pro needs two specific settings to ensure the ICS clients will have access. Otherwise, ZoneAlarm Pro on the gateway will block client access. In ZoneAlarm Pro, on the ICS gateway machine: - Step 1. Go to the Security panel. - Step 2. Select "Advanced." - Step 3. Go to the "General" tab. - Step 4. Click "This computer is an ICS gateway". The local gateway address 192.168.0.1 should appear in the Local Address combo box. The internet IP address will also appear in the list, but 192.168.0.1 is what should be selected. - Step 5. Go to the "Local zone Contents" tab. - Step 6. In the "Adapter Subnets" list, check the checkbox for the network card that the local network is connected to (the one with the 192.168.0.1 address). Do not check the adapter that connects the gateway to your modem. - Step 7. Click "Apply" or "OK" for these two settings. That is the minimum that is required for ZoneAlarm Pro installed on the ICS gateway machine. On the ICS server, be sure that the checkboxes to allow outgoing DNS and outgoing DHCP are checked. You can find these in the Security panel. Click Advanced, then "Internet Zone Custom Settings" tab. ZoneAlarm Pro does not have to be installed on the ICS clients. But if the clients would like to see ZoneAlarm Pro alerts, have the client machine(s) protected by ZoneAlarm Pro, control outbound connections from client applications, or perhaps have more stringent security than the gateway's ZoneAlarm Pro settings, then install ZoneAlarm Pro on the client machine(s) and: - Step 1. Go to the Security panel. - Step 2. Click "Advanced." - Step 3. Go to the "General" tab. - Step 4. Click "This computer is a client of an ICS gateway running ZoneAlarm Pro." The gateway address 192.168.0.1 should appear in the Gateway Address combo box. - Step 5. Check "Forward alerts from gateway to this computer" if you would like to see the alerts on the client machine. - Step 6. Go to the "Local Zone Contents" tab. - Step 7. In the "Adapter Subnets" list, check the checkbox for the network card that connects the client to the gateway. 7. How do I set up ZoneAlarm or ZoneAlarm Pro to work with NAT? ZoneAlarm and ZoneAlarm Pro are compatible with NAT. If you set the Internet zone security level to "High," the computer running ICS will be protected by the firewall. However, Internet access for the other computers (that access the Internet through the ICS machine), will be blocked. As a workaround, you can set the security level on the ICS machine (for the Internet Zone) to "Medium." By default, ZoneAlarm does not include the adapter subnets that correspond to your network cards as part of your Local zone. Therefore, computers on your Local Area Network will not be visible to each other. In ZoneAlarm: - Step 1. Go to the Security panel. - Step 2. Click "Advanced." - Step 3. Under "Adapter Subnets," locate the network adapter that corresponds to your network and check the checkbox. - Step 4. Click "Apply." - Step 5. Click "OK." In ZoneAlarm Pro: - Step 1. Go to the Security panel. - Step 2. Click "Advanced." - Step 3. Select the "Local zone Contents" tab. - Step 4. Under "Adapter Subnets," locate the network adapter that corresponds to your network and check the checkbox. - Step 5. Click "Apply." - Step 6. Click "OK." If you have resources such as printers attached to your computer that others on the network need access to we recommend that you disable the ZoneAlarm Automatic Lock feature via the Lock panel. When engaged, the Automatic Lock will block access to these resources from the Local zone. 8. How do I set up ZoneAlarm Pro to work my VPN? To configure a VPN connection through ZoneAlarm or ZoneAlarm Pro, you will need some specialized information. If you have questions regarding any of the following, it is suggested you ask your network administrator for the appropriate information. You will need to populate ZoneAlarm or ZoneAlarm Pro's Local zone with: Your VPN server or VPN concentrator IP address. The remote PC that acts as a gateway (i.e. 10.0.0.10). All of the LAN/WAN subnets that interact with the internal network that you want access to. These can be Class A, B, or C networks, such as 10.0.0.0, subnet 255.0.0.0. RADIUS or TACACS+ server IP address (if applicable). Any servers that you will need to make use of through the VPN such as DNS servers used that are not on your internal network, POP and SMTP mail servers for email. Depending on the operating system the VPN client is installed on, it may be necessary to add the local host address (NIC loopback): 127.0.0.1. Note: Make sure there is no proxy software running on the local host if the loopback address needs to be added. ZoneAlarm and ZoneAlarm Pro will recognize services and applications on the machine when they are launched or a related service is invoked. For example, this might be the VPN client itself and related services such as Xauth and IKE services. To populate the Local zone in ZoneAlarm Pro: - Step 1. Go to the Security panel. - Step 2. Click "Advanced." - Step 3. Select the "Local Contents" tab. - Step 4. Click "Add." - Step 5. Select the appropriate field (Host/Site, IP address, IP range, Subnet). - Step 6. Under "Description", enter a name or description for entry. This description can be anything. - Step 7. Enter the Host/Site, IP address, IP range or Subnet. Note: when adding a host/site, ZoneAlarm and ZoneAlarm Pro will automatically resolve and confirm the domain as reachable before accepting the entry. Also, when adding a subnet, the subnet mask must be known. Please note that ZoneAlarm and ZoneAlarm Pro will only perform DNS resolution once - when the site is first added to the Local Zone. Once added, it will not resolve the IP address again. - Step 8. Click "OK" or "Finish" as prompted. You will also need to allow VPN protocols permission to pass through ZoneAlarm Pro. Go to the Security Panel > Advanced > General Tab. The "Allow VPN protocols at high security" option permits GRE (Generic Route Encapsulation), ESP (Encapsulating Security Protocol) and AH (Authentication Header) through ZoneAlarm Pro at high security. These are common protocols used with a VPN. If your VPN client vendor uses other protocols, check the "Allow uncommon protocols at high security" option. Or read if you must UNINSTALL: http://pub24.ezboard.com/fsecureyesecurityfrm3.showMessage?topicID=59.topic Uninstalling ZoneAlarm and ZoneAlarm Pro Under Windows Me Click here to return to Installation and Uninstallation FAQ Main. Step 1 - Uninstalling Files Step 2 - Renaming Configuration Settings Step 3 - Emptying Recycle Bin Step 4 - Removing Registry Entries Step 5 - Rebooting Your Machine Step 6 - Difficulties Removing Files or Folders - Uninstallation Step 1. If you want to uninstall ZoneAlarm or ZoneAlarm Pro, first run the Uninstaller program: click on the Start menu|Programs|Zone Labs|Uninstall ZoneAlarm (or Uninstall ZoneAlarm Pro). The uninstaller will guide you through the process; answer yes to any files it prompts you to delete. A. To make sure that you can see any ZoneAlarm or ZoneAlarm Pro system files still on your computer: - i. Right-click on Start, then left-click on Explore. - ii. When the Windows Explorer panel appears, click Tools, then Folder Options. - iii. Click the "View" tab, then click the "Show hidden files and folders" radio button. - iv. Click "OK." B. Verify that the following have been removed: - Directories: 1) Zone Labs from C:\Program Files 2) zonelabs from C:\Windows\System 3) Zone Labs from C:\Windows\Start Menu\Programs - Files: 1) C:\Windows\System\vsdata.dll 2) C:\Windows\System\vsdata95.vxd 3) C:\Windows\System\vsmonapi.dll 4) C:\Windows\System\vsnetutils.dll 5) C:\Windows\System\vspubapi.dll 6) C:\Windows\System\vsutil.dll 7) C:\Windows\All Users\Start Menu\Programs\Startup\zapro 8) C:\Windows\Start Menu\Programs\Startup\zapro 9) C:\Windows\All Users\Start Menu\Programs\Startup\zonealarm 10) C:\Windows\Start Menu\Programs\Startup\zonealarm NOTE: Please verify that none of the files listed above remain in the directory C:\Windows\Temp. - Uninstallation Step 2. Delete the directory "C:\Windows\Internet Logs". NOTE: If you want to save your alert logs (ZAlog.txt), you should copy them from the Internet Logs directory to a different location before deleting the directory. - Uninstallation Step 3. Make sure your Recycle Bin is empty. - Uninstallation Step 4. It is not generally necessary to remove registry entries if reinstalling ZoneAlarm or ZoneAlarm Pro. However, should you choose to do so, the following registry entries aree associated with ZoneAlarm or ZoneAlarm Pro: Important Advisory: Deleting registry entries incorrectly may cause serious problems to your operating system (OS) which may necessitate the need to reinstall the OS. Please make sure you are able to perform these deletions correctly before you decide to edit the entries. For information about how to edit the registry in Windows, type "regedit.exe" from a command prompt. Click "Help," then "Help Topic." Click "Changing Keys and Values." Note that you should back up the registry before you edit it. To enter the registry, go to Start/Run and type: "regedit." Use Control-F to find and F3 to Find Next. Registry Entries: - Key: HKEY_LOCAL_MACHINE\SOFTWARE\Zone Labs and all its subkeys and values. - Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm Pro These registry items starts the services required for ZoneAlarm or ZoneAlarm Pro: - Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices - Value: MiniLog and Value: TrueVector - Key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\VSDATA95 This is a database that contains a long list of values, but only these values are related to ZoneAlarm or ZoneAlarm Pro and TrueVector: - Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\SharedDLLs - Values: C:\Program Files\Zone Labs\ZoneAlarm\tutorwiz.dll C:\Windows\System\vsdata.dll C:\Windows\System\vsdata95.vxd C:\Windows\System\vsmonapi.dll C:\Windows\System\vsnetutils.dll C:\Windows\System\vsnetu.dll C:\Windows\System\vspubapi.dll C:\Windows\System\vsutil.dll C:\Windows\System\Zone Labs\html.tdr C:\Windows\System\Zone Labs\vsdb.dll C:\Windows\System\Zone Labs\minilog.exe C:\Windows\System\Zone Labs\vsmon.exe C:\Windows\System\Zone Labs\vsruledb.dll For each user who has run ZoneAlarm or ZoneAlarm Pro, there are registry keys in - Key: HKEY_CURRENT_USER\Software\Zone Labs The following keys allow the user to modify the sound that is played when there is an alert through use of the Control Panel Sounds applet: - Key: HKEY_CURRENT_USER\AppEvents\EventLabels\InternetAlert - Key: HKEY_CURRENT_USER\AppEvents\Schemes\Apps\.Default\InternetAlert\.current The following keys tell Windows the ZoneAlarm and ZoneAlarm Pro Desk Band is a part of the application: - Key: HKEY_CLASSES_ROOT\CLSID\{long string of characters}\InprocServer32 (NOTE: The string of characters will vary from system to system.) - Value: C:\Program Files\Zone Labs\ZoneAlarm\zoneband.dll The following keys are related to ZoneAlarm and ZoneAlarm Pro's MailSafe Feature: - Key: HKEY_CLASSES_ROOT\ZAMailSafe There is a value for the extension of every attachment that ZoneAlarm Pro quarantines (.vbs, for example). To find the values and keys to delete: 1) Click on HKEY_CLASSES_ROOT. 2) Press F3. 3) Type "zamailsafe" in the search field (no quotes). 4) Press F3 to find the next value. An example of the value you will see (on the right-hand side of the window) would be: ZAMailSafeExt: REG_SZ: {renamed extension -- zl9, for example). 5) Delete the value. Press "OK" at the prompt. 6) Repeat until there are no more values like the example above. ZoneAlarm Pro quarantines 37 extensions by default. However, any additional extentions you may have chosen to quarantine will also be listed in the registry. There is also a registry key for the extension of every attachment renamed by ZoneAlarm Pro. The names of the keys will range from .zl0 to .zly. If you wish, you can follow the instructions above to find the values associated with these keys. Delete the entire key which contains these values. For ZoneAlarm (not Pro), The following keys can be removed: - Key: HKEY_CLASSES_ROOT\zl0 - Key: HKEY_CLASSES_ROOT\ZAMailSafe Back to Top - Uninstallation Step 5. Reboot your machine. - Uninstallation Step 6. If you experienced difficulty deleting ZoneAlarm or ZoneAlarm Pro files or folders, try removing the items mentioned above AFTER following the steps below: A. Reboot your system either into Safe Mode or to a command prompt (by pressing either F8 at the beep, or holding the Control key during boot). B. You should now be able to remove the files specified above

The following is LONG, but complete, as I had to copy and paste from my document database, as I do not have the oroginal web pages this info came from: Zone Alarm has a HELP page at their web site. If their program is configured properly, this should not happen. Also, see the following sites for more guidelines on how to configure ZA: http://www.moonlake.net/security/docbza1.htm Zone Alarm Config HELP 1. On what types of connections can I use ZoneAlarm and ZoneAlarm Pro? Both ZoneAlarm and ZoneAlarm Pro will work on any type of Internet connection, dial-up modem, cable modem, and DSL modem as well as any LAN connections with firewalls and proxies. 2. DHCP. Here are some things you may need to do if you are having problems obtaining or renewing an IP address with ZoneAlarm Pro running. It may not be necessary to do all of the following: Add the DHCP server's address to your Local zone, with Local zone set to "Medium" security. If there is only one DHCP server, or very few, this may be a reasonable solution. It may be easier to use the name[s] of your ISP's DHCP servers if there are more than just a few. Add the address of your gateway to your Local zone, with Local zone set to "Medium" security. If the DHCP server is in a different subnet, the gateway forwards the messages from the server. Adding the gateway to your Local zone can allow your computer to accept the message with the IP address. Contact your ISP to determine what the specific requirements are for a user's computer to accept DHCP packets. If you are told by your ISP to not use a firewall then you would need to speak with a technician who understands network security requirements. 3. Broadband Heartbeat. Some ISPs check periodically to see if their dial-up customers are still connected. If it appears that you are not there, such an ISP will disconnect you so that your IP address can be given to someone else. For ZoneAlarm Pro users, there are several solutions. One is to set Internet security to "Medium." You can set the security level for the Internet zone in ZoneAlarm Pro's Security panel. If your ISP checks your connection by pinging you, then this allows the ping but the firewall still blocks NetBIOS access to your computer from the Internet. In addition, you remain protected by ZoneAlarm's unique application control feature. Only those applications that you approve can connect to, or accept connections from, the Internet. The second solution is to identify which of your ISP's servers are being blocked by ZoneAlarm Pro, and to add them to your Local zone. This has the advantage of working even if your ISP checks your connection by doing a NetBIOS query, and it allows you to keep your Internet security setting at "High." To identify the server your ISP uses to check your connection, wait until your ISP disconnects you. Click on the "Alerts" button and review the last several alerts in the "Current Alerts" pane. See if you can identify the alert that corresponds to the time when you were disconnected. Note the address and add it to your Local zone. The procedure is described below. Here's how to add a trusted Host/Site or IP Address to your Local zone: - Step 1. Click the "Security" button to view the expanded Security panel. - Step 2. Click "Advanced." - Step 3. Click "Add." If you know the domain name of the site: - Step 4. Select "Host/Site." - Step 5. Under "Description", enter a description for the site. - Step 6. Under "Host/Site," enter the domain name for the site. For example, "session2.callwave.com" (no quotes). - Step 7. Click "Next." - Step 8. Click "Finish." - Step 9. Click "OK." OR, if you know the IP address: - Step 4. Select "IP Address." - Step 5. Under "Description", enter a description for the site. - Step 6. Under "IP Address," enter the IP address of the site. For example, "127.0.0.1" (no quotes). - Step 7. Click "OK." After adding the server to your Local zone, redial your ISP and see whether you now remain connected. You may have to repeat this procedure for several server IP addresses. You can also contact your ISP and ask for the IP addresses of the servers they use to check your connection. ZoneAlarm Pro offers a third option, not available to users of regular ZoneAlarm. ZoneAlarm Pro users can specify that pings be allowed in the Internet zone, without lowering the Internet security level to "Medium." To do this: - Step 1. Click "Security." - Step 2. Select "Advanced." - Step 3. Select "Internet Zone Custom Settings." - Step 4. Under "High Security Settings for Internet Zone," locate the line for "Allow incoming ping (ICMP Echo)" and check the box next to it. If your ISP is checking your connection using something other than ping, and if you can determine from your alerts (or by contacting your ISP) what port or protocol is being used, then the "Internet zone Custom Settings" become a very useful tool. You can use the "Internet zone Custom Settings" to configure your "High" security to allow only what is needed for your ISP to verify your presence on the Internet, without having to lower your overall security. ZoneAlarm and ZoneAlarm Pro are personal firewalls designed to protect the individual computer they are installed on. This can include a PC workstation attached to a LAN. By default, ZoneAlarm does not include the adapter subnets that correspond to your network cards as part of your Local Zone. Therefore, computers on your Local Area Network will not be visible to each other. In ZoneAlarm, to include the subnets of network adapter cards in your Local zone: - Step 1. Go to the Security panel. - Step 2. Select "Advanced." - Step 3. Under "Adapter Subnets," locate the network adapter that corresponds to your network and check the checkbox. - Step 4. Click "Apply." - Step 5. Click "OK." In ZoneAlarm Pro: - Step 1. Go to the Security panel. - Step 2. Select "Advanced." - Step 3. Select "Local zone Contents" tab. - Step 4. Under "Adapter Subnets," locate the network adapter that corresponds to your network and check the checkbox. - Step 5. Click "Apply." - Step 6. Click "OK." If you have resources such as printers attached to your computer that others on the network need access to we recommend that you disable the "ZoneAlarm Automatic Lock" feature via the Lock Panel. When engaged, the Automatic Lock will block access to these resources from the Local zone. On occasion applications or services that are configured with server privileges start before ZoneAlarm. In these instances, these applications will not be granted server privilege and ZoneAlarm will block them. To resolve these instances, you will need to quit the application, or service, in question and then start it again. 4. Installing ZoneAlarm Pro on a Server Zone Labs does not officially support ZoneAlarm Pro installation on servers at this time. ZoneAlarm Pro was designed specifically for client applications. We will provide any developments regarding server support on our Web site. Some of our users have run ZoneAlarm Pro successfully on a server. However, it's important to note that a server's multiprocessing and multithreading features, combined with the higher amount of network (or Internet) traffic that a server must handle, will require a considerable amount of system resources. ZoneAlarm Pro will monitor all of these networking resources, which could ultimately cause adverse effects on your server. If you plan to attempt installing one of our firewall products on a server, use only ZoneAlarm Pro with its advanced features. Additional items to note: (A reminder: Using ZoneAlarm Pro on a server is not supported by Zone Labs at this time. Running ZoneAlarm Pro on a server is at your own risk.) ZoneAlarm Pro ONLY protects the machine that it is installed on. Additionally, Web servers are designed to be accessible to the Internet, and ZAP will NOT prevent things such as Code Red or Nimda that come in via a port you have opened up. Running a personal firewall is not a substitute for keeping your OS (i.e. security patches and service packs), your server software (i.e. IIS) and antivirus software updated at all times. Some things to consider should you decide to set up ZoneAlarm Pro on a server: Remote installations: When you first bring up a new ZAP installation, the remote connection will be blocked by default, so you will be unable to give your own connection permissions. Do not attempt to install ZoneAlarm Pro across a network. For information on what specific ports need to be opened, and what access programs and underlying services) may require, you will need to refer to the manufacturer's documentation. To open specific ports : 1) From the Security panel , click Advanced. 2) Click the Internet Zone Custom Settings Tab. 3) Under "High Security for Internet Zone", scroll down to where these settings are listed: - Allow incoming UDP ports - Allow outgoing UDP ports - Allow incoming TCP ports - Allow outgoing TCP ports 4) Check the box beside the desired setting. 5) A field will appear below, where you can type in a port or range of ports. 6) Click OK. Because ZoneAlarm Pro was designed for a user to personally monitor and respond to alerts and popup messages, you will need to modify the default settings. In order to allow your server to accept connections when ZoneAlarm Pro is left unattended: 1. If your server only accepts connections from a few sources (such as an e-mail host), add those addresses or subnet(s) to the trusted Local Zone. Then you only need to place a green check for the Local setting, and place a red "X" for the pro

Well if THAT doesn't say it all, I don't know what will. LOL

Try connecting first. Then once your connected, start up Zone alarm. It should detect your modem automaticly. Then tell it what you want it to do. Or just do a system restore. Hope that helps you. Rick.