These rules allow startup of various components of the operating system on which the Kerio Personal Firewall is installed. Internal system security rules can be found in the System Security / Applications section (see chapter 13.2. Application Rules). These rules cannot be removed, however, users can set actions, logging or/and notices for them.
Some of these internal rules are applied only in certain versions of Windows operating systems (some system components differ in individual versions).
The following symbols are used in the description of system component rules to define file path:
WIN_DIR — the main directory of the
Windows operating system (typically, C:\WINNT for Windows
NT/2000, C:\WINDOWS for other versions)
SYS_DIR — system directory of Windows
(typically, C:\WINDOWS\SYSTEM for Windows 98/Me,
C:\WINNT\SYSTEM32 for Windows NT/2000, and
C:\WINDOWS\SYSTEM32 for Windows XP)
Rules which are common to all versions of Windows
| Application | Description | Start | Modify | Launch another |
|---|---|---|---|---|
WIN_DIR\explorer.exe | Windows
Explorer | Permit | Ask | Permit |
Special rules for Windows 98/ME operating systems
| Application | Description | Start | Modify | Launch another |
|---|---|---|---|---|
SYS_DIR\systray.exe | System
Tray | Permit | Ask | Permit |
Special rules for Windows NT/2000/XP operating systems
| Application | Description | Start | Modify | Launch another |
|---|---|---|---|---|
SYS_DIR\services.exe | Services
app. | Permit | Ask | Permit |
SYS_DIR\winlogon.exe | Logon app. | Permit | Ask | Permit |
Special rules for Windows 2000/XP operating systems
| Application | Description | Start | Modify | Launch another |
|---|---|---|---|---|
SYS_DIR\svchost.exe | Generic Host
Proc. | Permit | Ask | Permit |
Special rules for Windows XP operating system
| Application | Description | Start | Modify | Launch another |
|---|---|---|---|---|
SYS_DIR\logonui.exe | Logon UI | Permit | Ask | Permit |
SYS_DIR\csrss.exe | Client
Server | Permit | Ask | Permit |
SYS_DIR\smss.exe | Client
Server | Permit | Ask | Permit |
SYS_DIR\svchost.exe | Generic Host
Proc. | Permit | Ask | Permit |
These rules allow running individual Kerio Personal Firewall applications using special auxiliary programs. The following rules are common to all supported versions of Windows.
*) The KPF_DIR expression represents
a directory (path) where the Kerio Personal Firewall
is installed (typically, C:\Program Files\Kerio\Personal Firewall
4).
| Application | Description | Start | Modify | Launch another |
|---|---|---|---|---|
KPF_DIR\kpf4gui.exe* | KPF GUI | Permit | Permit + log | Permit |
KPF_DIR\kpf4ss.exe* | KPF Service | Permit | Permit + log | Permit |
KPF_DIR\assist.exe* | Core dumper | Permit | Permit + log | Permit |
KPF_DIR\cfgconv.exe* | Conf. conv. | Permit | Permit + log | Permit |