Firewall rules for Avast ping home?

  • Thread starter Thread starter AndyHancock
  • Start date Start date
A

AndyHancock

Crossposted to http://forum.avast.com/index.php?topic=34656.0

I just installed Avast antivirus (home edition). According to the
online help, I should configure the firewall to allow access to

* URL: http://www.asw.cz/iavs4pro
IP: 195.70.130.34

* URL: http://www.avast.com/iavs4pro
IP: 64.246.6.135

* URL: http://www.iavs.net/iavs4pro
IP: 207.44.156.15

* URL: http://www.iavs.cz/iavs4pro
IP: 62.168.45.69

According to
http://support.avast.com/index.php?_m=know...&kbarticleid=25,
the programs that should be allowed access are

* avast.setup
* avastXX.setup (where "XX" are some numbers)
* aswUpdSv.exe
* ashServ.exe
* ashWebSv.exe

However, I'm getting firewall access requests that correspond to
neither the IP addresses or applications listed above. The requests
are pings (ICMP[8]) to sl2XX.avast.com, where X varies from 09 to 14
(and probably beyond, except that I got tired of them and created a
blocking rule). The IP addresse are 75.126.203.67-72. There was also
one to sl205.avast.com (75.126.130.172). The firewall lists the
application as tcpip kernel driver.

I haven't found any information on legitimate IPs for the pings. Do I
have to open up the firewall to all outgoing pings? What is the
impact on Avast functionality or updatability if I don't?
 
I've brought this discussion over to the Avast forum under
http://forum.avast.com/index.php?topic=34656.0. With luck, it will be
feasible for Avast to provide a complete set of firewall rules
(fingers crossed).

---------- Forwarded message ----------
From: AndyHancock
Date: Apr 12, 3:12 am
Subject: Firewall rules for Avast ping home?
To: microsoft.public.security


Crossposted tohttp://forum.avast.com/index.php?topic=34656.0

I just installed Avast antivirus (home edition). According to the
online help, I should configure the firewall to allow access to

* URL:http://www.asw.cz/iavs4pro
IP: 195.70.130.34

* URL:http://www.avast.com/iavs4pro
IP: 64.246.6.135

* URL:http://www.iavs.net/iavs4pro
IP: 207.44.156.15

* URL:http://www.iavs.cz/iavs4pro
IP: 62.168.45.69

According tohttp://support.avast.com/index.php?_m=knowledgebase&_a=viewarticle&kb...,
the programs that should be allowed access are

* avast.setup
* avastXX.setup (where "XX" are some numbers)
* aswUpdSv.exe
* ashServ.exe
* ashWebSv.exe

However, I'm getting firewall access requests that correspond to
neither the IP addresses or applications listed above. The requests
are pings (ICMP[8]) to sl2XX.avast.com, where X varies from 09 to 14
(and probably beyond, except that I got tired of them and created a
blocking rule). The IP addresse are 75.126.203.67-72. There was also
one to sl205.avast.com (75.126.130.172). The firewall lists the
application as tcpip kernel driver.

I haven't found any information on legitimate IPs for the pings. Do I
have to open up the firewall to all outgoing pings? What is the
impact on Avast functionality or updatability if I don't?
 
Back
Top