Firewall Tutorial for Utorrent with Comodo Internet Security

[Guest]

[IamOkaw]

I think I'm good. I swapped out pandlouk's rules with Ragwing's.

Ragwing's instructions + cracktcpip = speedfest, no intrussion warnings.

[cloudforest]

I think I'm good. I swapped out pandlouk's rules with Ragwing's.

Ragwing's instructions + cracktcpip = speedfest, no intrussion warnings.

That's nice.

[vehf263]

Hi guys. Im newbie at this forum, Im using COMODO firewall and have a questions:

1. How to ports forward for using uTorrent (PFConfig doesnt help at all, but once it forwarded all I needed, I beleive it fakes me)?
2. In conjunction with 1.: How to track using COMODO's capabilities any move of particular application, ANY?

[Jorgosch]

uTorrent's listen port is totally different from the port it uses for ougoing connections. For example, my uTorrent listen port is 55000. So uTorrent listens for incoming connections on this port. When uTorrent needs to send data, it will use any random port it pleases.

Not necessarily true and not advisable. See my post above.

[Jorgosch]

I saw some blocked traffic to my utorrent port from six or seven different IP addresses today. Details of blocked traffic: Application: C:\Program Files\uTorrent\uTorrent.exe, Source Port: UDP 80 (sometimes UDP 21), Destination Port: my utorrent listen port.

I am assuming these are legitimate requests. It's odd to use UDP 80, or UDP 21 as a source port. But may be these guys are behind a corporate firewall, and are trying to circumvent restrictions on the the use of other ports.

So my question is this: shouldn't Rule 1 be modified to allow traffic originating at all source ports.

No. Ports below 1025 are outside of specs and not to be trusted. That IS the reason why you are using a firewall in the firstplace, isn't it? People shouldn't use their corporate lines anyway, those are blocked for a reason.

[kail]

I must agree with Jorgosch on the use of privileged ports. If someone is using a privileged port for a torrent, then I really hate to imagine what else they've been doing & I certainly don't want to connect my system with a system that is controlled by a user who does things like this.

[Ragwing]

I've updated my post with my rule sets now. I've included an easier rule set for beginners, and an more advanced to disallow the use of privileged ports, without logging them as intrusion attempts (it might flood your log a lot if you keep uTorrent on during the night).

Cheers,
Ragwing

[cloudforest]

I must agree with Jorgosch on the use of privileged ports. If someone is using a privileged port for a torrent, then I really hate to imagine what else they've been doing & I certainly don't want to connect my system with a system that is controlled by a user who does things like this.

Point taken. At any rate, the percentage of torrents users who use UDP 80 or UDP 21 as a source port is probably only a small fraction of the total user base.

[cloudforest]

I've updated my post with my rule sets now. I've included an easier rule set for beginners, and an more advanced to disallow the use of privileged ports, without logging them as intrusion attempts (it might flood your log a lot if you keep uTorrent on during the night).

Cheers,
Ragwing

Some people might not want to do manual port forwarding. Since this is a guide for beginners, perhaps you might want to mention that, if supported, the UPnP facility can be used as an alternative to manual port forwarding. In that case you would have to modify your instruction to disable UPnP withing uTorrent.

[cloudforest]

Hi guys. Im newbie at this forum, Im using COMODO firewall and have a questions:

1. How to ports forward for using uTorrent (PFConfig doesnt help at all, but once it forwarded all I needed, I beleive it fakes me)?
2. In conjunction with 1.: How to track using COMODO's capabilities any move of particular application, ANY?

Look up your router model number, then go to portforward.com, then go to the section dealing with your router model.

One alternative to manual port forwarding is to use the UPnP facility.

As for how to track, here is a recent post explaining this in great detail:
http://forums.comodo.com/help_for_v3/log_active_connections-t24475.0.html

Here's another recent post on the limitations of logging in Comodo Firewall:
http://forums.comodo.com/help_for_v3/comodo_firewall_log_not_showing_some_blocked_events-t24304.15.html

[TTorroro]

Hi to one and all . I use Utorrent with Comodo Firewall 3 and I've been having 0 incoming connection.

I find this curious as normally torrents users would connect to my ip from previous experience.

A test on listening port Utorrent shows it is closed although , and i think this is a more accurate assessment , GRC port test shows my listening port as being stealth.

I have fiddled with the first 2 stealth settings in stealth wizard , both of which i added a topmost global rule to allow All incoming UDP or TCP protocol to my listening port. But even with these setting it turn up negative on both types of port test.

Does anyone have an idea of what problem I am encountering ?

I have not done port forwarding because i do not have a router in my home connection. I connect on my laptop direct to internet ( or so it would seem ) from my usb modem tapping onto HSPA network .


Some interesting observation .
1) My external Ip ( the one that GRC shield shows up ) 203.116.xxx.xxx is different from my ip ( 10.13.XX.XX)shown in Active Connections.All TCP out connection shown in this list of Active connection is 10.13.xx.xx.


Appreciate if someone could help me with this incoming connection problem.

[Juninhoslo]

Does anyone know how to make Comodo firewall work properly with uTorrent. I dont have router only modem.

Thx and have nice day

[IamOkaw]

Does anyone know how to make Comodo firewall work properly with uTorrent. I dont have router only modem.

Thx and have nice day

Listen carefully. This applies to this situation, as well as every message board on the internet:

READ THE THREAD BEFORE ASKING QUESTIONS. If it is a particularly long thread, as this one, at least read the first page. This thread TELLS YOU how to make comodo work with uTorrent. You just have to read it and follow its instructions.

[3xist]

READ THE THREAD BEFORE ASKING QUESTIONS.

He asked politely.

Using CAPS is considered "shouting", Please try to avoid that

[IamOkaw]

He asked politely.

I know. I didn't call him a n00b. I just gave him some advice. Still, it is frustrating when people post a question in a thread that was answered in the very first post in said thread. I just don't understand the thinking behind it.

Using CAPS is considered "shouting", Please try to avoid that

It's also used for emphasis. There's a difference between making a whole post in caps and using caps to emphasize important words.

[Tags:]