Configure ZoneAlarm Firewall For VNC server

This article describes how to manually configure your ZoneAlarm Firewall for VNC on Windows XP as a host computer. This article might also be applied on other applications for enabling or disabling desired ports in ZoneAlarm the same descrbed way.

ZoneAlarm Version Explained for enabling or disabling a port on host computer
ZoneAlarm Pro version:8.0

Application(s) to be enabled: VNC Ports
This description asumes that you have installed your VNC Server on a host computer listening to the following ports. these are default ports with VNC. you should consider the ports what you have with your VNC.
Port for VNC Server : 5900
Port for VNC Server on HTTP : 5800

Step 1 – Open ZoneAlarm and choose from left navigation buttons Firewall -> Expert

Step 2Add both ports to allow in comming connections on them.
you can add the ports individually by clicking Add button from bottom-right buttons. Or you can also make a group of both ports and can add that group as a new entry.
But I am not taking you through trouble of deciding a way. And in this article we will add individual ports as a single rule entry.
So go ahead and click on the Add button

step1
Fig-1

 

Step 3.A – Define a Rule
Clicking Add button in previous step will pop up a dialog titled “Add Rule”. This is where you have to enter the detailed rule to allow incomming connections.
You can specify Source Computers that you want to give access to as well as to a specific application. but here we are concerning to allow an application (e.g. VNC) on host computer to be accessed from anywhere outside world (WAN or LAN). this was some description to the beginers.
So we go with adding VNC to be allowed from any where.

  • Give the rule a Name what ever you want. and some comments.
  • Set the following required values as below
    State:Enabled
    Action:Allow
  • In Protocol section click Modify, and then click Add Protocol in Add Protocol submenu.
Fig-2

Step 3.B – Define a Rule – Add desired port(s)
In previous step after clicking Add Protocol, you will see a new dialog titled “Add Protocol”.�
just follow as below

  • Protocol: TCP & UDP
  • Description: what ever you want. I used ‘VNC Server’ in this article
  • Destination Port: Other and 5900
  • and Click OK
Fig-3

NOTE: You have to repeat this step once again to add another port for VNC Server HTTP access that on 5800. just repeat it as follows

  • Protocol: TCP & UDP
  • Description: what ever you want. I used ‘VNC Server HTTP’ in this article
  • Destination Port: Other and 5800
  • and Click OK
Fig-4

after performing the Step 3.B twice, you will have both ports added in your rule that is yet to be defned. you should have the screen as above (Fig-4) in front of you now with the two entries in Protocol section titling “VNC Server” and “VNC Server HTTP”.
just confirm the other details and Click OK

You are not still done…..

Look at the new Rule entry named “VNC” in Firewall -> Expert view. This change has to be applied yet. Click Apply in the bottom-right buttons set.

Fig-5

Now that’s it.
Your VNC Server should now be accessible from any where outside world.

NOTE:
If you have any rule that is to Block all incomming connections to your host computer, then you must keep your VNC rule entry above that blocking entry. otherwise your VNC entry will not perform desired actions.
In last image “Fig-5” above, look at the last entry “Block ALL” this entry is actually blocking all incomming connections from outside world to any of the computer in my local network. and all the other entries are just above that to be performed in a desired way.

Requirement beside the firewall settings:
Because firewall controls incomming or outgoing traffic but not the applcation programs installed on your host computer. ZoneAlarm has a specific module called “Program Control” to handel computer’s application execution.
So you have to be sure that the VNC Server installed on your computer has access to the internet and has been allowed by ZoneAlarm’s Program Control to access system’s resources. you can confirm that by choosing Program Control from left panel of the ZoneAlarm’s main interface.

I hope all the instructions above will help you regarding your issues with enabling access to your application(s) like VNC on host computer protected by ZoneAlarm firewall. 

Leave your comments and feedback. how this article was helpfull to you.
Please also comment if you have any issues with above procedure.

Related articles
Configure Windows Firewall For VNC server
Ultra VNC host on Windows XP