I found out what ip/ ports private trackers use by just downloading one torrent from the site, then finding out which ip/port they used.
Also, where most people seem to ALLOW http requests from any (which includes your ip) to any, (which obviously includes every ip address in the whole world), i have it ASK instead.
So, my rules are not set to "allow from any to any".
You could have it from any instead of my ip, it makes no difference.
I think the problem is, if you strictly follow pandalouks rules, you only allow trackers who are on port 80. My point is, if you compile a list of ip's and the ports they use, you don't get bothered by HTTP requests. The other day, i got what seemed like hundreds of TCP out alerts, trying to communicate with various ips on port 80, so i guess this port can't just be trackers. Maybe people who use emule. I think this port is special or something, like, it's always open.
If you want to work out the port/ip a tracker uses, you could just download one torrent from a private tracker, get comodo firewall to "ask TCP out where source and destination ip and port are any" Then you should get a request to allow the ip/port you need to allow, i assume. Then change your TCP request rule back to something more sensible. Don't blame me if this ip/port is the MPAA, though!
It is so funny that i just gave you technical advice. Don't listen to anything i say until someone else comes along to verify what i'm telling you!
PS you could just ask the tracker which ip and ports they use. Which one is it?