Welcome to the Comodo Forum
Welcome,
Guest
. Please
login
or
register
.
September 06, 2008, 07:34:54 PM
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
189180
Posts
22039
Topics
52854
Members
Latest Member:
mulumu
more news...
Search:
Advanced search
|
Tag Cloud
Welcome to the Comodo Forum
Desktop Security Products
Comodo Firewall
Frequently Asked Questions (FAQ) for Comodo firewall
Does this make it easier to explain?
« previous
next »
Pages:
[
1
]
Author
Topic: Does this make it easier to explain? (Read 2528 times)
panic
Global Moderator
Comodo's Hero
Offline
Posts: 5387
... and I say to myself, "What a wonderful world"
Does this make it easier to explain?
«
on:
July 20, 2006, 04:59:07 AM »
G'day,
One of the guys at work was having trouble getting his head around the source/remote conditional direction thing in CPF and the only way I could get it through to him was to substitute the word "From" for "Source" and "To" for destination. It immediately clicked and the final penny fell into place when I substituted "Me" for the relevant "Any"s.
Using this, real noobs (and I mean banjo playing type REAL noobs!!) got it straight away. Maybe this terminology may be better.
Screen shot is attached
What do you all think?
Ewen :-)
«
Last Edit: July 20, 2006, 06:02:11 AM by panic
»
Logged
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the
Comodo Forum Policy
.
If you don't like it, don't use the forum.
m0ng0d
I used to be indecisive, but now I'm not so sure.
Global Moderator
Comodo's Hero
Offline
Posts: 781
Re: Does this make it easier to explain?
«
Reply #1 on:
July 20, 2006, 06:33:17 AM »
hey, tell me I was right in my thread
http://forums.comodo.com/index.php/topic,1102.0.html
:
Logged
OS:
WinXP x64
Comodo Security:
CFP 3.0.25.378
Other Security:
aVast 4.8 HE, Mailwasher Pro 5.3 LFE
Wish:
x64 iVault for FireFox, x64 CAVS, x64 Comodo Backup
panic
Global Moderator
Comodo's Hero
Offline
Posts: 5387
... and I say to myself, "What a wonderful world"
Re: Does this make it easier to explain?
«
Reply #2 on:
July 20, 2006, 06:48:39 AM »
Quote from: m0ng0d on July 20, 2006, 06:33:17 AM
hey, tell me I was right in my thread
http://forums.comodo.com/index.php/topic,1102.0.html
:
You're spot on! I just found that changing the text made it so easy to get the knowledge across to the guys/gals at work.
So tell me, does the screen shot make it easier to understand/explain?
ewen :-)
Logged
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the
Comodo Forum Policy
.
If you don't like it, don't use the forum.
pandlouk
I love Comodo
Global Moderator
Comodo's Hero
Offline
Posts: 2240
Panagiotis
Re: Does this make it easier to explain?
«
Reply #3 on:
July 20, 2006, 11:03:55 AM »
Hi panic,
With the first 2 rules you have at the image the guys will have a lot of trouble during printing through Lan.
I agree that something like "me" or maybe
"my IP x.x.x.x"
could help the novice
Logged
panic
Global Moderator
Comodo's Hero
Offline
Posts: 5387
... and I say to myself, "What a wonderful world"
Re: Does this make it easier to explain?
«
Reply #4 on:
July 20, 2006, 05:43:50 PM »
Quote from: pandlouk on July 20, 2006, 11:03:55 AM
Hi panic,
With the first 2 rules you have at the image the guys will have a lot of trouble during printing through Lan.
I agree that something like "me" or maybe
"my IP x.x.x.x"
could help the novice
How come?
Those rules are the two rules generated by adding a trusted zone. I just changed the text labels.
Wouldn't these still work?
Ewen :-)
Logged
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the
Comodo Forum Policy
.
If you don't like it, don't use the forum.
pandlouk
I love Comodo
Global Moderator
Comodo's Hero
Offline
Posts: 2240
Panagiotis
Re: Does this make it easier to explain?
«
Reply #5 on:
July 20, 2006, 06:39:51 PM »
The 2nd rule is the main problem:
allows only incoming connections that are initiated by your machine.
If you send to print multiple pages, the first one will print just fine. But then the server will probably initiate a new incoming connection for informing your pc that has finished and can send him the second page. This probably will be blocked, since will be an incoming request with source your zone and destination your pc. And this is not covered by the rule:
In,my,zone,any
but is covered from the default:
In,any,zone,any
Logged
panic
Global Moderator
Comodo's Hero
Offline
Posts: 5387
... and I say to myself, "What a wonderful world"
Re: Does this make it easier to explain?
«
Reply #6 on:
July 20, 2006, 08:40:01 PM »
Quote from: pandlouk on July 20, 2006, 06:39:51 PM
The 2nd rule is the main problem:
allows only incoming connections that are initiated by your machine.
If you send to print multiple pages, the first one will print just fine. But then the server will probably initiate a new incoming connection for informing your pc that has finished and can send him the second page. This probably will be blocked, since will be an incoming request with source your zone and destination your pc. And this is not covered by the rule:
In,my,zone,any
but is covered from the default:
In,any,zone,any
Wouldn't the original print request be allowed by the first rule (allow, out, from me, to zone, any - where I am sending outbound an IP packet of some sort from my IP to another IP within the defined zone) and the subsequent request from the printer be covered by the second rule (allow, in, FROM ZONE, TO ME, any - where an IP address on the defined zone is sending some sort of IP packet to me)?
ewen :-)
Logged
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the
Comodo Forum Policy
.
If you don't like it, don't use the forum.
m0ng0d
I used to be indecisive, but now I'm not so sure.
Global Moderator
Comodo's Hero
Offline
Posts: 781
Re: Does this make it easier to explain?
«
Reply #7 on:
July 20, 2006, 09:48:21 PM »
Quote from: panic on July 20, 2006, 06:48:39 AM
You're spot on! I just found that changing the text made it so easy to get the knowledge across to the guys/gals at work.
So tell me, does the screen shot make it easier to understand/explain?
ewen :-)
Even just having the
[Me]
replacements helps the understanding.
Quote from: pandlouk on July 20, 2006, 06:39:51 PM
The 2nd rule is the main problem:
allows only incoming connections that are initiated by your machine.
If you send to print multiple pages, the first one will print just fine. But then the server will probably initiate a new incoming connection for informing your pc that has finished and can send him the second page. This probably will be blocked, since will be an incoming request with source your zone and destination your pc. And this is not covered by the rule:
In,my,zone,any
but is covered from the default:
In,any,zone,any
I've always set my printers to spool, then print... is this why i would have never seen this type of problem? My PC would send the whole print job... and if anything was to come back, it would be to say the job was done... but I'm thinking that my spooler connected to the spooler of the print server would be taking care of that info routing... and not a "secondary" communication from the server.
«
Last Edit: July 20, 2006, 09:51:48 PM by m0ng0d
»
Logged
OS:
WinXP x64
Comodo Security:
CFP 3.0.25.378
Other Security:
aVast 4.8 HE, Mailwasher Pro 5.3 LFE
Wish:
x64 iVault for FireFox, x64 CAVS, x64 Comodo Backup
pandlouk
I love Comodo
Global Moderator
Comodo's Hero
Offline
Posts: 2240
Panagiotis
Re: Does this make it easier to explain?
«
Reply #8 on:
July 21, 2006, 05:52:01 PM »
Quote from: panic on July 20, 2006, 08:40:01 PM
Wouldn't the original print request be allowed by the first rule (allow, out, from me, to zone, any - where I am sending outbound an IP packet of some sort from my IP to another IP within the defined zone) and the subsequent request from the printer be covered by the second rule (allow, in, FROM ZONE, TO ME, any - where an IP address on the defined zone is sending some sort of IP packet to me)?
ewen :-)
Hi panic,
you are right about this.
My mistake, I must have been very tired when I wrote this.
Logged
Tags:
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
** New to the Comodo Forum? Start Here! **
-----------------------------
=> New Member Information
-----------------------------
Want to help Comodo?
-----------------------------
=> Help Spread the Word - Official Comodo banners and logos
=> How can you help Comodo? (Please we do need you!)
===> Help spread the word! (Please read and help)
===> Comodo website issues for submitting website problems only
=> Please tell us your views and Vote here!
-----------------------------
General Category
-----------------------------
=> Melih's Corner - CEO Talk/Discussions/Blog
=> Which Product do you want Comodo to develop next?
=> General Discussion (off topic) Anything and everything...
===> Member Confessions :-)
===> Funny Photos :-)
===> Cool Stuff
-----------------------------
Desktop Security Products
-----------------------------
=> Comodo Firewall
===> Feedback/Comments/Announcements/News
===> Leak Testing/Attacks/Vulnerability Research
===> Help for v3
===> Help for v2
===> Frequently Asked Questions (FAQ) for Comodo firewall
===> Comodo Firewall Translations
===> Bug Reports
=> Comodo Anti-Viruspyware (CAVS)
===> Help for Comodo AntiVirus
===> FAQ for Comodo Anti-ViruSpyware
===> Feedback/Comments/Announcements/News about CAVS
===> Virus/Malware Removal Assistance
=> Comodo BOClean Anti-Malware
===> Announcements
===> Comodo BOClean Anti-Malware FAQ
=> Comodo DiskShield
=> Comodo Disk Encryption
=> Comodo Secure Email (CSE) Product
===> CSE Beta Corner
===> Frequently Asked Questions (FAQ)
===> Feedback/Comments/Announcements/News about CSE
===> Bug Reports
===> Help for Comodo SecureEmail
=> Comodo Memory Firewall(Buffer Overflow Protection)
===> Help
===> Frequently Asked Questions (Comodo Memory Firewall)
===> Feedback/Comments/Announcements/News
=> Comodo TrustConnect - Securing the Wireless world!
=> Comodo SafeSurf and (Comodo's own toolbar)
=> Backup
===> FAQ for Comodo Backup
===> Help
=> Verification Engine (allows you to verify what you see on the Internet)
=> Comodo Vulnerability Analyzer
=> AntiSpam
=> i-Vault
=> Launch Pad
=> Trusttoolbar
-----------------------------
Desktop Utilities
-----------------------------
=> Comodo Registry Cleaner
-----------------------------
Enterprise Security
-----------------------------
=> Comodo Endpoint Security Manager
-----------------------------
Compliance
-----------------------------
=> PCI DSS Compliance
-----------------------------
Learn about Computer Security and Interact with Security Experts
-----------------------------
=> Computer Firewalls
=> Anti Virus/Malware Products/Other Security products
=> Free Virus/Spyware/Trojan/Malware Removal by Comodo Experts
=> HIPS (Host Intrusion Prevention Systems)
=> Anti Phishing solutions
=> Digital Certificates, Encryption and Digital Signing
=> General Security Questions and Comments (not product related)
-----------------------------
Free Services for End Users
-----------------------------
=> UserTrust - First Independent Website Rating - Empowering our users!
=> User Anywhere (Remote Access product)
=> Comodo Meet (Web Conferencing Product)
=> Hacker Guardian
=> Trustfax (free Trial) (online faxing)
-----------------------------
Free Products
-----------------------------
=> Link to Free Comodo Products
-----------------------------
International Comodo Forums
-----------------------------
=> International Comodo Forums
===> 汉语语言, 漢語語言 / Chinese Simplified, Traditional
===> Nederlands / Dutch
===> Francais / French
===> Deutsch / German
===> ελληνικά / Greek
===> Magyar / Hungarian
===> Italiano / Italian
===> Nihongo / Japanese
===> Norsk / Norwegian
===> Polski / Polish
===> Português/Portuguese
===> По-русски / Russian
===> Espanol / Spanish
===> Svenska / Swedish
===> Turkce / Turkish
===> Українська / Ukrainian
===> tiếng Việt / Vietnamese
-----------------------------
Digital Certificates
-----------------------------
=> Code Signing Certificate
=> Content Verification Certificate
=> Email Certificate
=> SSL Certificate
-----------------------------
Web Server Products
-----------------------------
=> Two Factor Authentication for Web Applications
=> Trustlogo
-----------------------------
Infrastructure Products
-----------------------------
=> ZTL
=> Trustix Enterprise Firewall
-----------------------------
Other
-----------------------------
=> Forum Policy Violation Board
Page created in 0.197 seconds with 19 queries.
Powered by SMF 1.1.5
|
SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks
Design by
7dana.com