sup kats,
as most of you's know i found a kool prog awhile back called netpeeker,but in the state that it was in the free version didn't do that much that would help us out,but now we have a update to 2.60 and it is smokeing.





http://www.net-peeker.com

what is net peeker you ask?

A personal application firewall
Stop hackers outside attacking your system. Firewall rules can be based on applications, IP address/port number, DNS names, protocol type, or even HTTP URL. And there is no anonying popup alert.

A Spyware blocker
Keep your privacy! Firewalls cannot help here, because Spyware are hidden behind those "legal" application (IE for example). NetPeeker can find them and block their access to Internet. No one can access Internet behind NetPeeker's eyes.

A network speed limiter
Yes! NetPeeker can limit data transfer speed for every application and connection, both upload and download. Now you can control the usage of your bandwidth resource freely.

A powerful tool for P2P user.
Find out who is connecting you, where he is! you can disconnect any connection as you wish, set upload/download speed limitation on connections.

Popup killer
Stop those endless popup windows when you surf on the Internet. It works with all web browser.It can even kill those "flying little windows". No change to proxy setting.

And a network usage logger
Display application speed in realtime. And also log statistics informaiton.

(well some of that is blocked in the free version of the app,but hey it will still block and log

with netpeeker you can load up ip addressess just like peerguardian,but it will not use as much processor power to block things.Also you can watch what programs are getting hit frm what connections in real time and even sort out what programs you want to block ip addressess from hitting.

so basicly we can use this prog with the right setting and do what ever we want on the net...no more missing web pages,web adds,email server and so on.


ok so here is how to set things up with it.

Chapter 1

General Settings



Check new update every time NetPeeker startup

Check this box letting NetPeeker visit homepage for latest update available.

Start NetPeeker when Windows startup

Check this box to start NetPeeker GUI at Windows startup time and show it on tray icon. This option is not necessary if you just want to make "Block Rules", "Throttle Settings", "Log" and "Popup killer settings" take effect at system start time, because the device driver part of NetPeeker will always start and begin working at the system startup time.

Always on top

You can check this box to make NetPeeker windows always on the top most. This may help you keeping an eye on what's happening easily.

Remove closed applications/sessions from list automatically

To give user more time to inspect, all terminated process and closed sessions will stay in list for 2 minutes. You can change this behavior here. By uncheck the box, terminated process and closed sessions will never be removed. But in heavy traffic, this will eat up system resource if you keep NetPeeker opening for long time (for several days). So it is recommended to set a period reasonable to you.

Be sure to set this right,if you want to keep tabs on the peeps that you are monitering

Change password

You can set a password on NetPeeker, so only yourself can start NetPeeker and change settings. This is helpful if you want to limit data transfer speed or block unwanted Internet access for your kids.



Block Rules Settings



One Rule Set contains multiple sub rule set or rules, one rule indicates how to block connections. Each rule can have several exceptions, which indicate not to do something.

There are 3 predefined rule sets:

Custom Rule Set - contains user defined rules. It is recommended to put your own rules inside this rule set.



Personal Firewall Rule Set - contains predefined rules to make NetPeeker work as a personal firewall. You can change rules in this set to fulfill your needs.



Spyware Rule Set - contains predefined rules to block known spyware.

You can add/delete/rename rule and rule set, enable/disable them, move them up/down in the list.

A new useful feature is import/export rule set. With this feature, you can export your own rule set into a data file, send it to your friend, so your friend can import it into his rule list and benefit from it.

To specify how a rule work, select one rule, then click "Edit button", the rule editor dialog will popup. The format of rule and exceptions are same. Every rule or exception contains one name, and several options. The effect of one rule is the AND result of all selected options.



The lower part of this dialog is a preview window, which shows the logical means of this rule. You can verify the rule logic here.

The middle left is a option list, you can select one of them to set its attribute at the middle right panel.

Applications

If you select "Applications", you can insert applications you want to block at the right panel list:



To add new application, click "New" button. To Edit one application, double-click it. You can select from your machine directories by click "...". You can specify application by full path or file name. To delete one application, click button "delete".

Local Address

By select "Local Address" on the left panel, you can specify local address in your rule:



You can use "," to separate multiple items. There are 4 syntax to specify one IP address or range of IP address.

xxx.xxx.xxx.xxx
specify one single IP address



xxx.xxx.*
specify IP address range from xxx.xxx.0.0 to xxx.xxx.255.255. You can use wildcard "*" for any phase of 4. The rule is: if you use wildcard, you must use it at the end. So xxx.xxx.*.xxx is invalid.



xxx.xxx.xxx.xxx - yyy.yyy.yyy.yyy
specify IP address range from xxx.xxx.xxx.xxx to yyy.yyy.yyy.yyy



xxx.xxx.xxx.0/255.255.255.0
standard IP/MASK syntax to specify range of address




Remote Address

By select "Remote Address" on the left panel, you can specify remote address, network port, DNS name in your rule:



Connection Type

Here you can specify connection direction (Inbound/Outbound) and protocol type (TCP/UDP)



Effect Time

You can specify the effect period for one rule or exception.



There are two kinds of options, one is weekday and one is dayhour, you can combine them to create more flexible time period. For example, to specify one rule only effect at weekend and from 8:00am to 6:00pm. You can input "0, 6" in weekday edit box, and "8-18" in dayhour edit box.

WeekDay

Valid number is 0-6, 0 for Sunday and 6 for Saturday.

You can specify multiple period at same time, such as "0, 2-4, 6" separate them by ","

DayHour

Valid number is 0-24,

You can specify multiple period at same time, such as "8-12, 14-18" separate them by ","



HTTP Url

You can further set rules on HTTP request. NetPeeker will check every HTTP package and filter out those harmful request




To add new Url, click "New", then input the Url string in the edit box.

To delete Url, click "Delete".

To edit Url, select one Url, then click again, just like what you do to rename a file in file explorer. A edit box will appear for you to edit.

you can use wildcard "*" anywhere to specify rule.

Only "Directory" part of one full URL is accept. You should split one URL into DNS name part and path part, then input them separately in "remote address" panel and "Url" panel.

For example, you want to specify URL "http://www.spyserver.com/spypage/page1.htm",
you should specify "www.spyserver.com" in the "Remote Address" panel,
then specify "/spypage/page1.htm" in the "HTTP Url" panel.



logging

this is how to set up the logging

Log Settings



Enable Log

Log is disabled by default. Check this box to enable it, then input a directory to hold log files. There will be a new log file generated every day.

Log statistics information

A statistics log file "NPxxxxxxxx.stat" will be generated every day. You can see history statistics only if you enable this option.

Log network sessions

A network session log file "NPxxxxxxxx.log" will be generated every day. You can see session log only if you enable this option.

Session log filter

Set up a filter so only matched sessions will be logged.
There are two kind of filter rule: "log rule" or "no-log rule". A "log rule" means log sessions which match this rule, while "no-log rule" means matched session will not be logged. Refer to the "Rule editor" for how to setup a rule.



in the program there is also a file called RuleSets.Rul.this is where it keeps all the info that you put into it about the firewall.

i have added the peerguardian ip database that is on meths site to this blocking in and outbound tcp and udp connections as welll as blocking the netpeeker program from calling home if it is trying to do so (we are looking into it)

if anyone want to try out the loaded file download it and replace the file that is in the c:/programfiles/netpeeker directory.

if there are any questions let me know.


update i made a thread for the rules set here http://www.peerguardian.net/forums/index.p...?showtopic=1494

Yeah I just found out about this program today while browsing through a website (Not this one) and downloaded it and, of course got it registered. This program IS smoking..... I definitely suggest it for anyone who wants to watch whats going on with their network(s) AND have authority over it.

Yes, thanks cyberbork, sera, Deathangel

I've been using this app for a while.

Here's a NetPeeker 2.60 How-to Guide written back in January.

Format Support -> Research Centre -> NetPeeker HowTo http://www.bluetack.co.uk/forums/index.php...p?showtopic=470

There are 4 chapters in the guide and a comment afterward I thought I would reference it here.

Thanks,

Mike

Hey man, thanks for the heads up, but I have a question.

How do you import a blocklist database such as one in the peerguardian p2p format into Netpeeker like you mentioned above? I've looked and looked, but I can't find a way to do this. Maybe I'm just missing something.

Also, once you have netpeeker set up to block all IPs in the database, can it be used to replace Protowall? Because it would be great to monitor scans not only by their origin/destination but also as to what application they are scanning.

Is the CPU usage similar to that of Protowall?

Does it block all the protocols that Protowall does or only TCP/UDP?

Thanks for anyting you might be able to tell me.

hey Prospero424, welcome to the forums!



Well, I would not use this to block anything on my computer.

I have the Outpost firewall running along with ProtoWall. I keep Netpeeker running all the time and it will report all activity as it relates to applications, ports, and time. Nice analysis tool, but not a firewall.

Mike

Thanks for the quick reply.

Right now, I'm using the same configuration you are with Outpost, Protowall, and Netpeeker. I was wondering if I could get rid of Protowall and eliminate one of the apps running in the background, as they're starting to stack up

But it sounds like that would be a bad idea from what you said. Is there any specific reason that netpeeker shouldn't be used as a supplement to Outpost rather than Protowall? I suspect that it just doesn't offer the range opf protection as far as protocols and such that Protowall does.

Also, I'm trying the Blockpost plugin for Outpost right now, it's just a pain to convert and import the updated blocklists into it when compared to the convenience of Protowall combined with The Blocklist Manager, so I'm thinking of going back to using Protowall.

The only other problem I have with Protowall is that I can't access www.theonion.com because of their advertising configuration being blocked by the current blocklists. I should just be able to stop Protowall and then start it back up once in the site, but I have to actually terminate the Protowall process to get it to stop blocking. I guess it's either a problem with my particular configuration or a problem that will be fixed in future releases. Or both

I just wish security wasn't this messy, heh.
Thanks for all the hard work guys, good good stuff.

well if you have so great need for disabling protowall use blockpost for outpost firewall
http://www.bluetack.co.uk/forums/index.php?showtopic=1515

Yeah, as I mentioned above, that's what I'm doing at the moment.

I agree about the Blockpost 2 export support being easy to integrate into future versions of The Blocklist Manager. Hopefully we'll see this soon for that extra bit of convenience. (Hint Hint)

I got pinged by NetIQ AP2P when I went there

Yeah same here and cydoor hit me about 30+ times also

Are you guys talking about this link ? or something else?

http://www.net-peeker.com/

I dont get any other connections except for the netpeeker site.

Does anybody have a copy of the ruleset.
http://www.peerguardian.net/forums/index.php?showtopic=1494

What ruleset ? peerguardian.net closed over a year ago.. if you can see that page , please post what it says.

1st post has the link to the rule set on peerguardian and because peerguardian is not up I was wondering if anyone had a copy of it.

Ah ok , maybe someone will have it.. This guide is very old.

The new NetPeekers version 7.23 the RuleSet.rul has changed to "RuleSets.xml" and is formulated obviously in XML as:

And this is only for one spyware name!

NetPeeker is good IMHO, it offers all the tools mentioned in DeathAngels post,
but the updates for spyware aren't included in the price (I suppose). For my new installation of NetPeeker 7.23, its working with an added port 80 for blocking, which isn't easily done by a noob like me otherwise. Its worth the $25. Thanks to DeathAngel for the good tip and presentation of NetPeeker.

Sorry for the error -NetPeeker is in VERSION 2.73, not 7.23.
Besides blocking port 80 prevents executing a Whois... Oh well, I learning surely slowly, real slowly.

Those pics arn't showing up, can someone fix them so I can see how to properly configure the program
Thanks

can any one tell me why I cant see my options?

During set up the options panned comes up. under throttle I have no network interface listed. I don't have dhcp on, I'm using a static 192.168.x.x network. I took 192.168.0.0 out of the local lan filter thinking that would get it but it does not. No matter what I try I cant get the options up during normal use. It only show me at install?
THX.

I dont see an edit option, but I do see others doulbe posting so I guess its cool right?

here is a screen shot.

this could be the xp theme you are using.

I am installing it now and I see this:



It also has a main gui that you can access this from and also from the system tray icon.



The F T C P L buttons is where you change your settings as well

I hope this helps

firstaid

yup, I have seen that, but for some reason it wont work on this system. My guess is that I dont have a non 192 network. But I'm sure Im not the only one that uses a proxy or router?

It actuly worked on my system when I had dhcp on, I think cant rememebr but it did work, and I had all thoes option, now I just can get them?