While using browsers with with multiple tabs (concurent downloads)

Sunbelt PF (Kerio PF) causes freeze of certain requests and page needs to be reloaded to finish

this problem is existing for several builds (including 916/918) and affects multiple customers

and in combination with some AV it get's frustrating, e.g. Avast
http://forum.avast.com/index.php?topic=30486.0

i would like to know how resolve this because all i tried failed
- disable of resolve DNS , port and ikon no help
(only what 100% works is get rid of SKPF completely - full uninstall)

btw. NIPS, APB HIPS and web were disabled yet problem still persist

also very often instead of stall (trying load page)
browser shows various HTTP errors like (page not found, timeout, bad connection request etc)

again in moment SKPF is gone (disabled service and fwdrv.sys from loading on startup) all is ok

OMG, I thought it was only me.

I can 100% confirm this issue. Just as you have described.
Some pages have to be reloaded, on others you e.g. first get
a 404 Page not found or other bad request etc. errors (again,
just as you have described), then on clicking reload it works.

OS is WinXP, Browser does not matter, happens with both IE and
Firefox. If the firewall is shut down, the problems instatnly vanish.

I also have ALL the "fancy" stuff disabled, meaning that NIPS, HIPS,
Application Behaviour Blocking and most important of all, EVERYTHING
under "Ad blocking" and "Privacy" is DISABLED.

It is a common error, meaning that it does happen quite often and
not only seldomly "by accident".

This is a MAJOR issue indeed. This needs to be fixed, As it it completely
destroys the web browsing experience. I had to disable Sunbelt
for the time being.


Greetings,
Spacemarine.

PS: Dwarden, have you reported this error to Sunbelt ?
[/b]

Additionally it should be mentioned that this issue is NOT
directly connected to any Anti Virus Monitoring Software running in the
background.

I have NO Antivirus whatsoever running in the background, and still suffer
from this issue. It definately is an issue that lies within the firewall itself.

I am not sure if anybody from Sunbelt actually responds to this forum. I've been using KPF/SPF for a very long time now and the only serious problem I had was fixed via a registry tweak.

I'd suggest you post more information in the hope that "somebody" would pick up on the problem:

• Export the the registry key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fwdrv
  
• Post or attach the relevant contents of the log files from when the problem occurs:
  
  • C:\Program Files\Sunbelt Software\Personal Firewall\logs\error.log
    
  • C:\WINDOWS\system32\drivers\fwdrv.err
    

systems i got this with is XP SP2 2180 and XP SP3 beta 3180,3205
happens both with IE6 and IE7

it happens also w/o antivirus yet with Avast! web shield it happens VERY often (like 5 to 10 more often)

IMHO this problem began slowly to appear since 'ads' blocking was added ...

---

fwdrv.err

registry export, note i increased buffer sizes w/o any usable effect

Code:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fwdrv] "MaxBufferSize"=dword:00004000 "MaxBuffersAllocated"=dword:00000100 "WarnLog"=dword:00000000 "DebugLog"=dword:00000000 "DebugLogFlags"=dword:00000000 "DatagramRoutingExtent"=dword:3f760860 "TCPConnectionTimeout"=dword:00000000 "BlockIPv6"=dword:00000000 "BufCacheSize"=dword:00000080 "ErrLogFile"="\\SystemRoot\\System32\\drivers\\fwdrv.err" "DebugLogFile"="\\SystemRoot\\System32\\drivers\\fwdrv.dbg" "StreamSupportEnabled"=dword:00000001 "ErrLog"=dword:00000001 "ErrPopup"=dword:00000000 "Type"=dword:00000001 "Start"=dword:00000001 "ErrorControl"=dword:00000001 "ImagePath"=hex(2):5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,\   74,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,64,00,72,\   00,69,00,76,00,65,00,72,00,73,00,5c,00,66,00,77,00,64,00,72,00,76,00,2e,00,\   73,00,79,00,73,00,00,00 "DisplayName"="Firewall Driver" "StatInspEnabled"=dword:00000001 "AlwaysSecure"=dword:00000002 "FSSecEnabled"=dword:00000000 "RegSecEnabled"=dword:00000000 "AdapterNotificationDisabled"=dword:00000000 "Group"="File system" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fwdrv\Enum] "0"="Root\\LEGACY_FWDRV\\0000" "Count"=dword:00000001 "NextInstance"=dword:00000001

error.log

Code:

[18/Oct/2007 16:05:00] Config.cpp: GUI #10: Bad localization file (error: Bad file header): E:ProgramyUtilityBezpecnostKerioPersonal FirewallTransKpf4_00.klf [18/Oct/2007 16:05:01] Config.cpp: GUI #11: Bad localization file (error: Bad file header): E:ProgramyUtilityBezpecnostKerioPersonal FirewallTransKpf4_00.kl

when Windows Firewall is disabled there are 2 more lines

Code:

[18/Oct/2007 16:06:08] kwsapi: Could not get firewall profile: There are no more endpoints available from the endpoint mapper. (0x800706D9) . [18/Oct/2007 16:06:08] kwsapi: set: WindowsFirewall is not initialized.

i know that Sunbelt staff says 'soon' but they say soon for like half year already ...
would be nice to release betas , in the end they get better feedback and we fixed software

---

edit ok i think this error line is somehow related to the problem

Quote:

(3) 18.10.2007 16:07:55 TdiHndlrOpenAddress: hAddr: 0x88B92F28, Protocol: 6, Address: 0.0.0.0/0.0.0.0, Port: 3459 has no owner !?

as i just got the bug when tried view what i posted

Although I am running SPF 4.3.268, the registry entries seems to be the same for all 4.x versions.
Try changing this regvalue and see if it makes a difference:

I agree that this issue somehow seemed to have appeared
slowly and stealthily, meaning that it was not there six months
(or so) ago, and became more nagging in the recent versions.

Again, I'm using XP SP2, the most recent Sunbelt
FW build, ALL "extra features" such as AdBlocking etc.
disabled, NO AntiVirus running in the Background.
Happens with both Firefox and IE. Shutdown the firewall
and all stalling problems vanish into thin air

The problems seemed to have creeped in silently
not so long ago, maybe it only happens with 4.5.X
builds (just an idea)?

Nubiatech i wrote that i changed that value myself ,
it was happending with 0300 too ...

This bug is driving me crazy ...
Hope it will be fixed in the next version, or I'll have to drop
Sunbelt Firewall and look for something else.

If web filtering and ad blocking and all that stuff is disabled
the firewall SHOULD NOT TOUCH http / web traffic at all.

LEAVE MY WEB TRAFFIC ALONE!

Boy, you guys got really stressed out..;) :) Basically, this issue cannot be reproduced (edit: sorry, not locally on my PC anyway); So... Check if for example you're having trouble with

nimd4 i dont get it ? it needs some special rule or what ?

Hey sorry Dwarden :S Switched back to Comodo as their new beta came out fixing some problems. Hopefully Sunbelt gets it together for their new release.