Do i allow NT Kernel
- Thread starter martinlw
- Start date
- Status
Hi
If you're running any version of NT or 2k/xp, it's probably just your operating system trying to do a loopback with itself, especialy if the address it wants to contact is 127.0.0.0 or similar. This is harmless and it's also neccessary for the computer to run correctly. If it's an address on the internet it wants to get to, allowing it to do so is up to you. It may also be trying to get an ip address if you have your system set up to do dhcp, wich might also be what you're seeing. If the address it wants to contact is say like 192.168.1.1, it's (usualy) trying to get a dhcp issued ip address by "leasing" one from the router or whatever does dhcp for your system.
What is the address it's trying to reach?
If you're running any version of NT or 2k/xp, it's probably just your operating system trying to do a loopback with itself, especialy if the address it wants to contact is 127.0.0.0 or similar. This is harmless and it's also neccessary for the computer to run correctly. If it's an address on the internet it wants to get to, allowing it to do so is up to you. It may also be trying to get an ip address if you have your system set up to do dhcp, wich might also be what you're seeing. If the address it wants to contact is say like 192.168.1.1, it's (usualy) trying to get a dhcp issued ip address by "leasing" one from the router or whatever does dhcp for your system.
What is the address it's trying to reach?
Ntoskrnl.exe is a critical process in booting Windows.
Before you allow access, check your task manager and see if it is visible. If you can't see it as a running process, then it should be fine to allow it. If it is, make sure that your anti-virus defs are up to date and scan for viruses.
http://www.liutilities.com/products/wintaskspro/processlibrary/ntoskrnl/
Before you allow access, check your task manager and see if it is visible. If you can't see it as a running process, then it should be fine to allow it. If it is, make sure that your anti-virus defs are up to date and scan for viruses.
http://www.liutilities.com/products/wintaskspro/processlibrary/ntoskrnl/
Firewall permissions
I have recently switched from Sygate (new version was locking up) to Agnitum Outpost Firewall. I would appreciate some help on knowing what to block and what to allow.
It shows:
Generic Host Process for Win32 (set to always block)
LSA Shell (no setting)
Messenger 4.7 (Always block)
Application Layer Gateway (no setting)
msn.exe (no setting)
clientsideproxy (msn webaccelerator - always allow)
MSN Messenger 6.2 (always allow)
MSN Internet Service (no setting)
There are several svchost tasks that were blocked, as well as Netbios. Do these need to be allowed?
Thanks,
Brian
I have recently switched from Sygate (new version was locking up) to Agnitum Outpost Firewall. I would appreciate some help on knowing what to block and what to allow.
It shows:
Generic Host Process for Win32 (set to always block)
LSA Shell (no setting)
Messenger 4.7 (Always block)
Application Layer Gateway (no setting)
msn.exe (no setting)
clientsideproxy (msn webaccelerator - always allow)
MSN Messenger 6.2 (always allow)
MSN Internet Service (no setting)
There are several svchost tasks that were blocked, as well as Netbios. Do these need to be allowed?
Thanks,
Brian
RealBlackStuff
Posts: 6,450 +3
Mictlantecuhtli
Posts: 4,049 +13
As far as I know, ntoskrnl.exe doesn't need to connect anywhere, at least if you're not sharing any files in a network.
However, it could be useful to allow ntoskrnl to IP address 0.0.0.0 only, in order to avoid duplicate IP addresses from DHCP server.
I've set my firewall to block all traffic in & out from lsass.exe, svchost.exe and ntoskrnl.exe, except ntoskrnl to 0.0.0.0 and svchost.exe to my router.
However, it could be useful to allow ntoskrnl to IP address 0.0.0.0 only, in order to avoid duplicate IP addresses from DHCP server.
I've set my firewall to block all traffic in & out from lsass.exe, svchost.exe and ntoskrnl.exe, except ntoskrnl to 0.0.0.0 and svchost.exe to my router.
hi i keep getting the same message about nt kernal and system ? tried everything but it keeps blocking it really annoying shall i allow it .annoying message keeps comeing up no matter what i do this message pops up? any ideas please
- Status
Similar threads
Latest posts
-
BlizzGone: Blizzard cancels 2024 convention but promises an eventual return- Superconductor replied
