Fast Downloads with NOD Firewall Enabled?

One of our most important areas. Learn to use this site, improve your download speeds, convert to DVD and much more.
Post Reply
bunyip101
Registered user
Registered user
Posts: 30
Joined: Wed Dec 15, 2004 3:42 pm
Location: Australia
Been thanked: 1 time

Fast Downloads with NOD Firewall Enabled?

Post by bunyip101 » Sun Sep 14, 2008 11:19 pm

Changed the subject line as i realized it wouldn't make sense to some people.

I’ve seen a few posts asking about Nod32 and how to get a high Id and high download speeds while using it, and when I did a search for google I was surprised how many people said it can’t be done.

If I’ve got it all wrong and this is something everyone knows let me know so I can delete this post and not make an ass out of myself. :oops:

This post is aimed at the new user to emule so I apologise if it also covers old ground. It’s also a bit long winded, but I figured I was better off taking the time to cover as many bases as possible. You can also adapt a lot of it for use in a similar firewall or internet security suite package.

What I would hope to achieve by the time you have followed the below steps are the following outcomes:

NOD32 Smart Security running with Anti-Virus, Anti-Spyware, Anti-Leach and Firewall Protection all working and enabled.
You’ll have setup the ports for emule manually in your modem if no UPNP is available and be listed as open.
You’ll have your ports setup for you automatically in your modem if using UPNP
You can use random ports if you wish (extreme, mephisto , scar angel mods)
You’ll have a High ID on a connected server and Kad Ports
You’ll be able to obfuscate you connection if you wish
You can use the web interface without any problems
You’ll be able to download and upload to your maximum capacity (not both at the same time and sources permitting...)

Think thats it... they say a picture is worth a thousand words, so it should look something like this when you’re done:

Image

The first thing to do is read the Sharethefiles Guide http://sharethefiles.com/forum/viewtopic.php?t=24613 it will help you understand about how to setup emule, get the links into the program from STF and a wealth of other information. If you know all that... great it’s a pain trying to learn how to do it for the first time!

Rather than just tell you what settings to use (i’ll do that further down) I would prefer it if you understood why we are doing what we’re doing, that way you can troubleshoot your own problems, play with the settings to suit yourself, and also have a better idea of how to tweak other firewalls etc.

Warning: If you understand routers, ports, local ip addresses etc then just skip all the following dribble 8-)

The picture below is of a possible small network

Image

Couple of definitions for you:

Internet – If you’re reading this and don’t know you’re better off selling your computer.

Modem – This is what connects you to the internet. Sometimes they are combined in one physical unit with a router. Anytime you see the following connection speed names you’ll understand what they mean. The speeds listed are potential maximum speeds and can vary due to many reasons.

Image

You’ll notice two speeds are listed. One is the speed in bits the other in bytes. How it works is there is 8 bits to 1 byte. Note the capitalisation of the letters. The same is true with Megabits (mb) and Megabytes (Mb) A movie that you watch and download, and your emule speeds are all measured in Bytes (the second one). So a 700Mb movie would take you the following :

700Megabytes = 700,000Kilobytes

If you were downloading on Dial up it would be 700,000 divided by 7Kb per second, taking you 100,000 seconds to download the movie. About 28 hours.
If you were downloading on ADSL2 it would be 700,000 divided by 3000Kb per second, taking you 234 seconds to download the movie. About 4 minutes.

All of that is dependent upon sources, your line speeds, interference etc.

My point is that in the Sharethefiles Guide you will have read that Upload must be adjusted according to your maximum upload speed. You cannot upload at full speed and download at full speed at the same time. That’s important. Re read the guide for detailed instructions, but simply put set your upload to 80% of your upload capacity (ie. ADSL2 would be 128Kb * 80% = 102Kb)

You will be looking to open ports in the firewall of the modem if no router is present in your network.

Router – The role of the router is to transfer data within your home network. It will connect your modem to your computers and wireless devices (if equipped). Sometimes it includes the modem all in the one device. To simplify the explanation, imagine the router is a police officer. There’s a really busy intersection and the lights are out, and rather than waiting for the traffic to make up it’s own mind when to go, he starts directing traffic. Each lane of traffic can only be directed to go in one direction, so if a car rocked up wanting to turn right, it would wait until the police officer directed it to go to the right.

This is how port forwarding works in routers. The data (the car) comes in from the internet where it gets to the router (the cop). The data (car) doesn’t know where to go if the router (cop) doesn’t tell it. So we create rules for the router (cop). We want your computer to get the data it needs (emule). We need to tell the router (cop) that all data (cars) coming into the router on a particular port (lane) must be sent to your computer. For more information on your router go to http://www.portforward.com/default.htm If we don’t port forward we will get a car crash aka. Emule low id, which only occurs when the data isn’t getting through properly to emule. This can be port forwarding, firewall problems etc.

UPNP is simply put a set of traffic lights that will setup and manage your ports for you on as needed basis, therefore you won’t have to manually assign the port forwardings for each program you use.

IP Addresses – An IP address is like your home telephone number, the number is identified only with specific phone in your specific house. Some numbers don’t change (static ip address) and some do (dynamic ip address). This is assigned by your ISP (internet service provider) and can be found out at sites such as http://www.whatismyip.com and others. It might look like 88.80.5.95 for example.

Some smart cookies may even have seen that sight before! :-) The actual names are just an easy way to remember the numbers, but every computer on the internet has an ip address.

Local IP Addresses – ‘But my ip address is 192.168.1.1’ or something like that is heard time and again. If you look around your computer and see this address, don’t panic we don’t know your address from this number. Some IP addresses have been reserved for ‘internal use’ They include the following:

10.0.0.0 – 10.255.255.255
172.16.0.0 – 172.31.255.255
192.168.0.0 – 192.168.255.255

Why?

Look at the original network diagram up above. You’ll notice that the two computers are connected to the router. What happens is your modem connects to the internet and gets assigned an internet IP address. Now rather than connecting each computer and giving each computer an individual address what the router does is gives each computer in your network a private address in the range listed just above. So as you would see on my emule connection above, my ip address was listed as 192.168.1.2, my laptop is 192.168.1.3 and as you can imagine my router is 192.168.1.1 Keep and eye on those numbers in the NOD32 diagrams later in the post.

You cannot find out any information about me from those numbers.... millions of computers are using the same numbers I can assure you! Why? What if I had a thousand computers, but I wanted it to appear they all worked as one? You reckon the google search engine is run from 1 computer using 1 ip address? Definitely not. Think of it like a large business, many phone lines run into the business, so many people can dial in and out through the switchboard, but if you ring the main phone number it will get answered by an automated system (the router). Mind you, the way some companies put you on hold, maybe there is only one line!

Trusted Zone – This can be set for any ip address you want to trust. It is NOT recommended to trust anything outside your local network. To clarify, I trust 192.168.1.whatever addresses therefore I can in NOD call the 192.168.0.0 ip address range trusted. It means not to stop the data transferring between the computers within my network. For instance data sent from my computer to my router and back for UPNP.

Firewall – This is used for blocking data from coming into your network or your computer. Most routers have a built in firewall. I’m sure since you read the guide you’ve opened up ports in windows firewall. (Nod turns off windows firewall in place of it’s own firewall. I strongly suggest not having 2 firewalls running at the same time in your computer. In our traffic cop scenario you would probably have to consider this a ‘red light’ as it stops all traffic you tell it to.

Ok, what was the point of all that dribble? :?

If you understand it, now we get to the easy part with pics.

At this point I assume you’ve followed http://sharethefiles.com/forum/viewtopic.php?t=24613 in order to setup your emule.

Open you Nod32 control panel from the icon or the start menu and click the setup button with the cog next to it. After this click toggle advanced mode. Click Yes in the popup

Image

Okay, now click ‘Enter entire advanced setup tree’

Image

On the left side of the screen you will see Personal Firewall, click on it and then where it says filtering mode choose interactive. It should look like this:

Image

There is three choices, we chose interactive. Automatic does it for us, but it will block the UPNP ports for emule, and doen’t allow full configuration. Policy based is a pain as you have to setup rules for each program that uses the internet and local network. We are using interactive because it is configurable, plus if a new program starts we can just accept it or deny it, more later.
Next click on the little white triangle next to where it says personal firewall. I’m assuming your computer looks like the image above at this point. We’re going to work down each sub heading in order.

First click on Rules and Zones.

Image

Later I’m going to say ‘Click the second setup button’ when I do I’m referring to the one in the picture above.

Click the first setup button.

You may well see the Local IP address scheme listed now. If you don’t know you local ip address click Start Menu > Control Panel > Network Connections and click on ‘Local Area Connection’ expand the details pane on the left of your screen and you’ll see it listed there.

Back to the NOD32 screen and select the one for your ip address. My internal IP is 192.168.1.2 for the computer this was taken on, so I would select 192.168.1.0 then click next. The zero identifies all address between the dots.

Image

Click Allow Sharing radio button. The explanation of what we’re doing is pretty clear there. I run a wireless network, but I still click allow sharing, I just make sure I have excellent security on my router.
Ok. Click the second setup button. You remember right? You’ll get this screen:

Image

Fun part. You see four columns after application name? Our aim is to get a tick under each one for the emule application if we are using UPNP. If we don’t use UPNP and setup port forwarding ourselves we want a tick only under Internet IN/OUT. The same would go for any application that uses UPNP that you want to use for instance utorrent.
If you can see the emule process already there expand it with the little triangle next to the application listing. You may see ‘Allow communication for emule.exe’ if you do click edit. If you can’t see the emule process at all click New.

Image

First we’re going to setup the emule process to send and receive data through the internet, for those that this is a ‘New’ process I’d suggest calling the name ‘Emule Internet’, but hey if you can remember ‘flying pink elephants’ better put that in. :-)

Where it says direction select ‘Both’. Action set to ‘Allow’, and protocol to TCP & UDP. You’ll remember those names from the sharethefiles guide. Next click on the Local Tab.

Image

You will already have emule listed if you clicked the edit button. If you have nothing listed there browse to your emule program folder and select emule.exe. I use scar angel mod and I actually run it from my personal documents drive, so I don’t have to muck with settings if I reinstall my Operating System, but usually its C:/ProgramFiles/Emule/emule.exe from memory.
Now click the Remote tab.

We are first working on the Internet ports, so answer one of the following:

Do you use random ports in your emule, change your ports regularly and don’t want to have to readjust this firewall or don’t know what ports your emule is using?(if the third one is the case you will never get a High ID unless you have UPNP setup) If this is you leave everything in the next picture empty, and NOD will move the internet traffic around for you. I prefer this option as I know I already have a hardware firewall in my router. Keep in mind it is only ports and data that is running through your emule application, not your whole system being opened up here. Please do not put anything where the image has trusted zone.

Image

If you setup your ports manually you will need to know your TCP and UDP port now. Ok, nice and simple click the ‘add port’ button and where it says number put in the first port. Do this for your second port. If you use the emule web interface add a third port number 4711. If you use the mobile interface enter a fourth port 80. It should show up like this:

Image

If you do not use UPNP then you can ignore the next bit.

For those that use UPNP, go back to the zone and rule setup screen (the one with the ticks in it) and select the emule application. Click new and call the name Emule UPNP or something similar. Where it says direction select ‘Both’. Action set to ‘Allow’, and protocol to TCP & UDP. Now click on the local tab. All that shoud be here is the emule.exe link. Now go to the Remote tab and click add zone, and select trusted zone. This is saying we will trust all data to and from the local network including the router (not the internet though) Nothing else on this page, unless you wish to be overly security conscious and instead of putting trusted zone put in the address of your router, then click add port an put whatever port your router is set for UPNP on. But remember if your UPNP port changes, it won’t work, so I find it better to let the system assign it automatically.

Ok. Remeber the ticks? We should have 4 ticks next to the emule application if we are using plug and play and 2 under the internet column if we setup manually.

Navigate back to the screen that looks like this

Image

If you are using UPNP make sure the boxes are all ticked, if not no need to do anything here. Next:

Image

Make this page look like the above. Next:

Image

Just copy the image. We’re making sure emule and nod work together properly.

Image

Just copy again, I’ve unticked only show TCP connections as I prefer to see what else is going on, but it’s not important.
For the firewall setup that’s as far as she goes, but there is one other part that I find to be important when I’m using emule. Emule will now virus scan all traffic with the settings we’ve now got and I’ve found it slows down my download and upload process. It does not affect your high/low id status. To get around this we will be telling NOD not to scan the data being sent to and from the emule application. When a new file is finished downloading it will still be scanned though.

I’m not sure but as emule breaks the files up into packets and only sends each file in parts, it’s probable that the virus scanner wouldn’t pick anything up until the full file is reassembled, particularly where zip files etc concerned (which is where most of the keygens etc that get picked up as viruses are held). In addition, it would drive me crazy if I were trying to download a file and I couldn’t complete it because the keygen was picked up as a virus :}

On the menu go up to the antivirus section and navigate until you get to the section below and the follow the pic!

Image

Make certain emule has a red X next to it.

Thats it for the settings. You’ll get windows like this for a short while :

Image

If you’re not sure what the application is or what the role is, just do a google search. If you’re happy with the process just put in the tick to remember and hit allow.

I think that's it. Hope it all makes sense!
:roll:

EDIT: Crap I knew I forgot something. When you're done restart emule! It may take a minute or so before the UPNP is enabled depending on your router settings. While it takes it's time your client may connect to a server if you have autoconnect enabled. Once the UPNP is showing as connected in the server window, disconnect from the server and reconnect, then you have your High ID.

It may also be handy to change the UPNP advertisement period to a short time interval, and increase the advertisement time to live hops a bit too.

I've tested all this on both a Netgear and a D-Link router with the same results on both, and both have also been tested on a wireless connection as well.

Will put in a troubleshooting and tweaks section soon....

Crashst3r
Registered user
Registered user
Posts: 187
Joined: Wed Dec 27, 2006 10:38 pm
Been thanked: 1 time

Post by Crashst3r » Sun Sep 28, 2008 2:17 pm

Very in depth tutorial here, just took a quick look through, so will properly check it later and move to tutorials.

Thank you for your time on this :thumbs

User avatar
1984
Donator
Donator
Posts: 7
Joined: Sun Apr 16, 2006 2:15 am
Has thanked: 82 times

Re: Fast Downloads with NOD Firewall Enabled?

Post by 1984 » Wed Dec 10, 2008 6:28 pm

That was awesome and well written. Should be stickied and added to a tutorial section for sure. :v

Crashst3r
Registered user
Registered user
Posts: 187
Joined: Wed Dec 27, 2006 10:38 pm
Been thanked: 1 time

Re: Fast Downloads with NOD Firewall Enabled?

Post by Crashst3r » Fri Dec 12, 2008 9:30 pm

100% awesomeness, moving to tutorials.. Well done :thumbs

Post Reply

Return to “Tutorials”