Knowledgebase: WinGate
Ens - General tab (overview)
Posted by Adrien de Croy (Import) on 30 January 2004 04:56 PM
ENS – The General Tab
ENS (Extended Networking Services) was introduced to WinGate as a plug-in and then fully integrated in Version 4.3, to provide support for a Firewall, Network Address Translation, and Routing services. The settings for ENS can be found under the System tab in Gatekeeper on the WinGate Server.

Enable the Extended Network Driver :
ENS has its own driver for low level networking support which is loaded on Operating System startup. To disable ENS (and the driver from loading), make sure this check box is unticked. If selected during installation WinGate ENS will be installed and started when WinGate starts.

General Purpose Internet Sharing (NAT):
By enabling this check box it will allow WinGate to provide Network Address Translation (NAT) for clients to access the Internet through WinGate. When disabling this option clients will require either the WinGate Internet Client or Proxy method of connection to use WinGate. For more detailed explanation on how NAT works please refer to the WinGate helpfile.

Support for Multiple Subnetworks (Router)
This option allows for the support of multiple subnets and uses WinGates ability to route packets (network traffic) between dissimilar IP subnets when they are both connected to the WinGate Server.

This setting allows you to set default levels of security with the WinGate firewall based on the general purpose of WinGate activity. Due to the central focus of the firewall opening and closing specific ranges of ports further manipulation of the Firewall can also be achieved through configuration of the Port Security tab.
The following is a brief explaination of each of the standard firewall settings.

  • Disable WinGate Firewall
    By disabling the Firewall, all protection for the WinGate Servers external connection is removed and no port restrictions implemented. This can seriously undermine WinGate’s ability to defend from malicious port based attacks from the Internet.
  • Low: Allow Servers to run behind WinGate
    When this setting is chosen TCP Ports 20,21(ftp), 23(telnet), 25 (Smtp), 80(http), 110(pop3) 113 (Authentication) 119 Network News Server, are opened to receive connections from the Internet who are trying to access these common Internet Protocol Server types that could be running on or behind WinGate.
  • Medium : For Games and Internet Applications
    When this setting is selected only TCP Ports 1024 – 4096 are allowed for access for most common Internet games and applications, such as Messenging services, newsgroup apps etc. No server app ports or ports below 1024 are permitted with this setting.
  • High Denies all connections from the Outside
    As it suggests this setting will block all incoming connections that were not initiated from a request by a client application and are being responded to by a host server on the Internet. Most client apps will work fine when the firewall is at this setting, as long as they don’t require the server to initiate the connection (e.g. active mode ftp).
  • Custom: For Advanced users
    As mentioned previously users can allow or deny access to ports used in the Firewall through the Port Security tab. When ever ports are managed this way the WinGate will automatically change to this setting on the General Tab.
(1002 vote(s))
Not helpful

Comments (0)