Author Topic: Rules Flowchart  (Read 2030 times)

Offline Bucic

  • Comodo Loves me
  • ****
  • Posts: 191
Rules Flowchart
« on: April 14, 2008, 04:35:28 PM »
Somebody mentioned a flowchart? Is this one ok? I've made it in OpenOffice.org Draw in 10 minutes for my personal use. I'm new to COMODO and Firewalls in general.

Offline panic

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11441
  • Linux is free only if your time is worthless.;-)
Re: Rules Flowchart
« Reply #1 on: April 14, 2008, 06:49:33 PM »
One small point that might make you rethink your diagram (great idea to do it as a flowchart BTW);

Your flowcharts contains the terms "Incoming - to and from your PC - requested" and "Outgoing - from and to your PC - requested".

The terms "incoming" and outgoing", in a firewall context, refer to the originiating point in any data exchange, relative to your PC.

When your PC requests, for example, a web site, your PC is starting the "conversation" with the web server that contains the web page. Since your PC is the originating point of the conversation, this is normally considered an outbound connection, as the first bit was outbound from your PC. The replies that come back from the web server are assumed, as they are seen as a valid response to your valid outbound request.

If, on the other hand, someone out there on the internet tries to contact your PC (pinging or port scanning your IP address, for example) without your PC requesting the contact, since they are the originating point in the conversation, this is usually termed an inbound request. Because your PC didn't ask for the contact, this can also be called an inbound unsolicited request.

As a rule,  inbound unsolicited requests are BAD!! Very bad! There, therefore, needs to be a rule in your firewall that blocks these.

Cheers,
Ewen :-)
« Last Edit: April 14, 2008, 07:04:55 PM by panic »
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the  Comodo Forum Policy.
If you can't conform, don't use the forum.

Offline Bucic

  • Comodo Loves me
  • ****
  • Posts: 191
Re: Rules Flowchart
« Reply #2 on: April 15, 2008, 01:16:55 AM »
One small point that might make you rethink your diagram (great idea to do it as a flowchart BTW);

Your flowcharts contains the terms "Incoming - to and from your PC - requested" and "Outgoing - from and to your PC - requested".
It says Outgoing is unrequested :) Hey! It should be opposite! :/

The terms "incoming" and outgoing", in a firewall context, refer to the originiating point in any data exchange, relative to your PC.

When your PC requests, for example, a web site, your PC is starting the "conversation" with the web server that contains the web page. Since your PC is the originating point of the conversation, this is normally considered an outbound connection, as the first bit was outbound from your PC. The replies that come back from the web server are assumed, as they are seen as a valid response to your valid outbound request.

If, on the other hand, someone out there on the internet tries to contact your PC (pinging or port scanning your IP address, for example) without your PC requesting the contact, since they are the originating point in the conversation, this is usually termed an inbound request. Because your PC didn't ask for the contact, this can also be called an inbound unsolicited request.

As a rule,  inbound unsolicited requests are BAD!! Very bad! There, therefore, needs to be a rule in your firewall that blocks these.

Cheers,
Ewen :-)

I was trying to reflect this:
One of the most important observations on the definitions above (other than the heirarchy of the Rules set by the Rule ID) is that both InBound Rules and OutBound Rules both control information comming into our PCInBound Rules deal with incoming information/communication we didn't ask to happen (but may want to happen), while OutBound Rules deal with incoming information/communication we asked to happen.
I think highlited part confused me PLUS I got it wrong aside of being confused :)

So... How about the next version of my flowchart? :)


Offline panic

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11441
  • Linux is free only if your time is worthless.;-)
Re: Rules Flowchart
« Reply #3 on: April 15, 2008, 02:50:22 AM »
Nice job! Well done and very easy to follow.

Ewen :-)
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the  Comodo Forum Policy.
If you can't conform, don't use the forum.

Offline Bucic

  • Comodo Loves me
  • ****
  • Posts: 191
Re: Rules Flowchart
« Reply #4 on: April 15, 2008, 06:28:53 AM »
Thank you!  ;D
Soooo... If it's correct why don't someone use it for this "manual for users by users" I've heard of. I can provide it in OpenOffice.org DRAW (.odg) format.
« Last Edit: April 15, 2008, 10:41:24 AM by Bucic »

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek