How to use the Firewall
This guide will show you how to use the BullGuard Firewall.
IMPORTANT! The Firewall is a very important section of any Internet Security suite, so we recommend using the guide below only if you know what you are doing, or you have received instructions from our Support Team. If you are not familiar with computers, it is recommended that you team up with a computer-wise friend, or contact our Support Team.
What is a firewall?
A firewall is a special computer application (or module within a security suite, such as BullGuard) whose purpose is to monitor and protect your computer from any unauthorised network traffic. Think of it as a guard at your door.
Why do you need a firewall?
Without a firewall, you computer is vulnerable to almost any type of network attacks and malware. We recommend using a firewall at all times you are connected to the Internet.
How can you use the firewall?
Our firewall is included within the BullGuard Internet Security suite. We recommend using this guide if you want to know more about configuring it or need to perform any changes.
Open the Firewall
First, you should open your BullGuard application. Double-click the BullGuard icon near the clock and click on the Firewall icon.
How can I find information about the person who is attacking my computer?
If you receive notifications from BullGuard that your computer is under attack, it is very important to understand these few things:
1. Remember the type of attack BullGuard informs you about.
2. If BullGuard nofies you about the attack, it also means it has been detected and blocked, and your computer has not been compromised.
3. While under attack, some applications from your computer may be blocked by the Firewall. Should the issue persist after the Firewall notification is gone, please contact our Support.
In case of an attack, BullGuard will automatically block harmful packets from reaching your computer, but it will not ban the computer behind the attack. If the attack persists, the Firewall will simply ban the IP of the attacker's PC and issue and inform you. This ban is lifted after 300 seconds by default - as valid computers may be behind that IP address.
To make sure that the attacker stays banned, you can manually block that IP address. Set the Firewall on Advanced, go into the Logs tab and look up the entries of the attack. When you find that specific even, right-click it and choose Ban remote host and a specific time for the ban effect.
Here is what you need to do if you want to know more about an attack:
1. Export (dump) the Firewall rules onto your Desktop. Follow this guide for the exact procedure:
I want to monitor, use and control my Firewall logs
2. If possible, take a screenshot of the attack notification you receive from BullGuard. Here is a quick guide for making screenshots:
a) Be sure to have the image you want to capture visible on the screen.
b) Press the Prt Sc key (or Print Scr / Print Screen).
c) Open Paint from Start > Programs > Accessories > Paint. In the Paint menu please choose Edit > Paste.
d) Please save the image in .JPG format: click File > Save as and choose the .JPG or .JPEG format in the "Save as type" box.
3. Write an email to firstname.lastname@example.org, and include a short description of the event (running programs at the time of the attack, your last actions etc.), then attach the screenshot and firewall rules.
Our Support should reply with details on the attack within 1 hour.
The BullGuard Team
If you did not find the solution you were looking for, please feel free to contact our Support.
Top of page