How to use the Firewall
This guide will show you how to use the BullGuard Firewall.
IMPORTANT! The Firewall is a very important section of any Internet Security suite, so we recommend using the guide below only if you know what you are doing, or you have received instructions from our Support Team. If you are not familiar with computers, it is recommended that you team up with a computer-wise friend, or contact our Support Team.
What is a firewall?
A firewall is a special computer application (or module within a security suite, such as BullGuard) whose purpose is to monitor and protect your computer from any unauthorised network traffic. Think of it as a guard at your door.
Why do you need a firewall?
Without a firewall, you computer is vulnerable to almost any type of network attacks and malware. We recommend using a firewall at all times you are connected to the Internet.
How can you use the firewall?
Our firewall is included within the BullGuard Internet Security suite. We recommend using this guide if you want to know more about configuring it or need to perform any changes.
Open the Firewall
First, you should open your BullGuard application. Double-click the BullGuard icon near the clock and click on the Firewall icon.
How can I enable/disable intrusion detection?
This guide will help you find out more about the Intrusion Detection System and how to enable/disable it.
There are 2 different ways to enable/disable this type of detection: in Beginner mode or in Advanced mode.
Note: In Beginner mode you will only be able to enable/disable this feature, while in Advanced mode you will also be able to edit its settings.
In Beginner mode
While in the Firewall section, choose the Beginner mode in the Overview tab.
Next, go to the Settings tab, where you will see the Enable Intrusion Detection option.
Note: For optimal protection, entrusion detection is enabled by default. We strongly recommend that you do not disable it.
In Advanced mode
While in the Firewall section, select the Advanced mode from the Overview tab.
Now go to the Profiles tab and double-click the Custom Security profile.
In the window that appears next, click the Security Settings tab, where you will find the Enable attack detection system option.
This tab contains many other sensible options. We strongly recommend contacting our Support Team if you are unsure about what you want to do.
Here is a description of these options:
- Attack List is where you can instruct your BullGuard Firewall to detect special types of attacks:
- Parameters will allow you to change (tweak) the settings which cause an event tol be recognized an attack.
- Sensitive ports is where you should enter the ports you consider "sensitive". These ports are most often used by attackers when trying to gain unwanted access to your computer. Entering these ports here will enable BullGuard to double-check them, thus increasing the security of your system.
Note: If your computer is not under attack, you should not change any parameters unless you know what you're doing. However if your computer is being attacked, please confirm the sensitive ports with our Support Team first.
- Trusted hosts has a special guide, which we recommend you read: I want to see the trusted hosts by my Firewall
- Enable the Firewall protection when BullGuard is closed has a special guide here: I want to enable/disable the Firewall protection when BullGuard is closed
- Detect modified applications is a feature that enables the Firewall to know when an application demanding network/Internet access has changed since you initially allowed it to access your connection. If the application has indeed changed, BullGuard will ask you to confirm the applications's access.
There are 2 different causes for an application to be modified: either you have upgraded (or updated) the application, or the application has been "hijacked" by malware. That is why we strongly recommend that you keep this option enabled.
Note that you have a button in this area named List. If you often modify an application, and you want BullGuard to stop notifying you that the application has changed, you can add it in this list and set the policy to "Keep Rules". Alternatively, if you want BullGuard to monitor a certain application more closely, you can add to the list and set the policy to "Reset Rules".
To add an application to the list, click the "+" button. To delete an application from the list, click the "-" button.
To save all changes you made in the list, click OK. To delete all changes you made in the list, click Cancel.
- Block unsolicited ARP packets will block all unsolicited ARP packets.
- Protect against hijacked gateways will enable BullGuard to scan and block any interaction with a hijacked gateway.
- Protect agains IP address duplication will enable the Firewall to scan and block IP address duplication.
- Ban intruders for ... seconds has a special guide here: I want to see the banned hosts by my Firewall
If you make any changes, remember to close all windows by clicking OK and then activate them by clicking on the Activate button.
Congratulations! You are now able to edit your security settings!
We also recommend you read these related guides:
I want to choose the best profile for me
I want to monitor, use and control my firewall log
The BullGuard Team
If you did not find the solution you were looking for, please feel free to contact our Support.
Top of page