Comodo Firewall Wishlist V6

[Guest]

[Online]

i hope the next comodo supports adding rules on the arp protocol

[seaniesean]

Here's my tuppence worth, off the top of my head.  By the way, I certainly haven't sifted through all the pages, so it's probably highly likely that these have already appeared somewhere in the thread...

1.  computer/network security policy rules- i want a "sort by name" or "sort by date modified" right click integration.  Looking through hundreds of entries to find a program sucks.

2.  Firewall events- i want right click with these too, so that if an IP is annoying me, i can right click and add to blocked zones (or trusted zone if its my friend)

3. Someone must have said this, but i'd like an easier way of importing blocked zones into the registry.  For a start, you could allow copying and pasting an ip address into blocked network zones,  you know, if you try and paste "99.99.99.99" into the add new blocked ip you only paste the first "99".  Some sort of blocklist import capability would be much much better though.  You could add a little Whois functionality too, this would make banning the buggers a lot easier.

That's all i got right now.  Good firewall in general.

[beartm]

Adding a few simple shortcuts, usability and/or reporting details would be fantastic:

1). Active Connections - Bytes In / Bytes Out

• Maintain TOTAL In/Out across all connections (historical for duration of application) in the Application Name columns instead of just being blank
• Could add in a simple gray line to delineate the different applications if needed/desired
• Add option to blacklist the IP instead of just terminate connection

2). Summary Screen

• Shortcut to 'Active Connections' from the Network Defense - "inbound/outbound connections"
• Shortcut to 'Active Processes' from the Proactive Defense - "## Application(s) are active and running

3). Active Process List

• Ability to display all the Active Connections for that process (or switch to the appropriate screen)
• Strangely enough, for the 'Company' column, Comodo is NOT listed as the company for "cmdagent.exe" - might want to add that in.
• Adding in some (readily) available process/resource/usage information would be quite useful (pop-up dialog) - saves using task manager/other monitor applications

4). Installer Mode

• If possible, track the applications and dll's which have been started/launched by the installer, and only permit those applications to have installation rights for a period of time. Otherwise there is (in theory) a window of opportunity for another application (unrelated) to access things in the system without prior knowledge or approval.
• Maybe (if the above is possible) then further track the application(s) until termination, and then close Installer mode. Or indicate this in the firewall icon or sub-menu somehow.

5). Executable Files

• Is there any reason why *.drv, *.vxd, *.com, and *.cmd, *.vbs files are not included in the "Executables" - Protected Files lists?
• These are also (in theory) all executables and I believe should also be monitored/protected. Wouldn't this be even safer?

And one final very strange thing which happened during my installation ... the Windows Firewall was NOT turned off! I only realized this after working with the machine for a while, and wondering why things seemed SLOWER with Comodo than they were before. Turning off the Windows Firewall sorted out this issue, and has greatly improved my impressions of the product! Upon startup, it may be very beneficial to always check that the Windows Firewall has NOT been re-enabled (or failed to be disabled), to ensure that the Comodo Firewall is the best it can be!

Looking forward to the next (even more) improved version!

Regards,
    Robert.

[3xist]

Adding a few simple shortcuts, usability and/or reporting details would be fantastic:

1). Active Connections - Bytes In / Bytes Out

• Maintain TOTAL In/Out across all connections (historical for duration of application) in the Application Name columns instead of just being blank
• Could add in a simple gray line to delineate the different applications if needed/desired
• Add option to blacklist the IP instead of just terminate connection

2). Summary Screen

• Shortcut to 'Active Connections' from the Network Defense - "inbound/outbound connections"
• Shortcut to 'Active Processes' from the Proactive Defense - "## Application(s) are active and running

3). Active Process List

• Ability to display all the Active Connections for that process (or switch to the appropriate screen)
• Strangely enough, for the 'Company' column, Comodo is NOT listed as the company for "cmdagent.exe" - might want to add that in.
• Adding in some (readily) available process/resource/usage information would be quite useful (pop-up dialog) - saves using task manager/other monitor applications

4). Installer Mode

• If possible, track the applications and dll's which have been started/launched by the installer, and only permit those applications to have installation rights for a period of time. Otherwise there is (in theory) a window of opportunity for another application (unrelated) to access things in the system without prior knowledge or approval.
• Maybe (if the above is possible) then further track the application(s) until termination, and then close Installer mode. Or indicate this in the firewall icon or sub-menu somehow.

5). Executable Files

• Is there any reason why *.drv, *.vxd, *.com, and *.cmd, *.vbs files are not included in the "Executables" - Protected Files lists?
• These are also (in theory) all executables and I believe should also be monitored/protected. Wouldn't this be even safer?

And one final very strange thing which happened during my installation ... the Windows Firewall was NOT turned off! I only realized this after working with the machine for a while, and wondering why things seemed SLOWER with Comodo than they were before. Turning off the Windows Firewall sorted out this issue, and has greatly improved my impressions of the product! Upon startup, it may be very beneficial to always check that the Windows Firewall has NOT been re-enabled (or failed to be disabled), to ensure that the Comodo Firewall is the best it can be!

Looking forward to the next (even more) improved version!

Regards,
    Robert.

That's quite a list! But OK... 

Cheers,
Josh

[JustinMP91]

This has probably been suggested already... but:

I run CFP on a headless Windows XP machine which I use as a server ... and it would be awesome if I could configure Comodo to e-mail me or something when it detects an intrusion attempt or something similar to that. I understand that this could be considered a useless feature to most, as the majority of people that run the firewall do it on desktop PCs ... but yeah.

Kinda going with the same theme here ... it would be a nice feature if you could have the firewall export the logs at a regular interval or something.

And last ... the ability to copy log snippets, for easier pasting.

I feel like I'm trying to customize CFP for my own needs, lol :X

[3xist]

This has probably been suggested already... but:

I run CFP on a headless Windows XP machine which I use as a server ... and it would be awesome if I could configure Comodo to e-mail me or something when it detects an intrusion attempt or something similar to that. I understand that this could be considered a useless feature to most, as the majority of people that run the firewall do it on desktop PCs ... but yeah.

Kinda going with the same theme here ... it would be a nice feature if you could have the firewall export the logs at a regular interval or something.

And last ... the ability to copy log snippets, for easier pasting.

I feel like I'm trying to customize CFP for my own needs, lol :X

Regarding "intrusion attempts", You can make it count how many attempts a hacker tries to break into your PC. Simply go to Firewall\Advanced\Network Security Policy. Find C:\WINDOWS\system32\svchost.exe , Double click on it and make it "Out Going Only".

Every PC should have schvost.exe as out going only, Anyway, after that and maybe a reboot you should see on the main CFP 3 GUI in Network Defense the #'s start showing.

Cheers,
Josh

[JustinMP91]

Not really what I meant

It's a headless machine so I'd have to VNC in to check the firewall periodically, just saying for some people it could be easier to just have an option in the firewall to e-mail alerts.

[3xist]

Yeah... Maybe... But you're idea could be a good optional one.

[JustinMP91]

Well I never meant it should be enabled by default.
Something like Avast! has, where hidden deep in the settings you can find a place to set up e-mail alerts.

[3xist]

Yeah but some people won't like it (Including my self), So it should be like an "option" in the deep settings turned off by default and the user can choose to enable or not.

Cheers,
Josh

[schwartr]

One thing that I would personally find handy is to have a way to organize and/or a search feature in D+'s Computer security policy screen.

[fazio93]

One thing that I would personally find handy is to have a way to organize and/or a search feature in D+'s Computer security policy screen.

+1 

[Pedro*]

Search is useless with a proper GUI. That's what is missing.

[redfordxx]

1)
Hi, I am usinig Comodo for few days and there is one thing I consider extremely irritating:

After there is an alert and I choos what to do, the alert window disappears, but the focus is not given back to the application which had it before. I have to manually get focus to the application I worked last with.

(sorry if this is duplicity)

2) other thing: maybe there could be an option for the user to choose the behavior of the "remember checkbox"
- default yes
- default no
- as last time
- as last time similar type of alert ?

[3xist]

1)
Hi, I am usinig Comodo for few days and there is one thing I consider extremely irritating:

After there is an alert and I choos what to do, the alert window disappears, but the focus is not given back to the application which had it before. I have to manually get focus to the application I worked last with.

(sorry if this is duplicity)

2) other thing: maybe there could be an option for the user to choose the behavior of the "remember checkbox"
- default yes
- default no
- as last time
- as last time similar type of alert ?

Haha...  lol

Hopefully CFP 3+Sandbox+Threat Cast will be right for you!

Cheers,
Josh

[Tags:]