Author Topic: Ping Reply [Resolved]  (Read 7639 times)

Offline grampa

  • Comodo's Hero
  • *****
  • Posts: 392
Ping Reply [Resolved]
« on: August 16, 2007, 04:03:45 PM »
Hiya,
just run the "Shields up" check on grc.com
Every port was perfectly stealthed; my computer seemed to be safe. The only test my computer failed was the ping test to which it happily replied (didn't happen with 2.4).
Any ideas how to set CFP to not reply to ping request?
Thanks in advance for all your help.
grampa
« Last Edit: August 19, 2007, 09:03:47 AM by Soya Lv. 2 »
"It is a mistake to think you can solve any major problems just with potatoes." (Douglas Adams)

Offline N.T.T.W.

  • Comodo's Hero
  • *****
  • Posts: 1124
  • A minute of your time can help many.
Re: Ping reply
« Reply #1 on: August 16, 2007, 04:09:09 PM »
Set up a new rule in network monitor:

see the attached screenshot, network rule 7 in my case.

When you create the rule make sure you move it above the rule that is number 8 on my list (number 6 on a new install I think). It is important that that 'catch all' rule is last on the list!

 :SMLR

[attachment deleted by admin]
Post proelia praemia.
Die dulci fruere.

soyabeaner

  • Guest
Re: Ping reply
« Reply #2 on: August 16, 2007, 06:40:25 PM »
Actually, grampa (with the small G ;)) is using 3 beta not 2.4 as hinted in his parenthesized part.  (Confirmation for that is here).

Offline grampa

  • Comodo's Hero
  • *****
  • Posts: 392
Re: Ping reply
« Reply #3 on: August 17, 2007, 01:24:38 AM »
Hey Soya (or whatever impersonator / usurper ;D you may be),
I've always marvelled at your ability to find / remember threads from the (in this case not so long ago) past. Your memory is very impressive and so is your ability to spot little well hidden hints on current CFP versions.
N.T.T.W., I apologise for not stating anywhere in my post which version I'm using. My fault! I'm most grateful for your help (here and in all the other circumstances you have helped my in the last weeks (see Soya Lv.2, I can also remember things from the past  (:TNG)).
Thank you everyone and please do not stop helping me out.
Any further ideas are most welcome.
Cheers,
Grampa (for the first and probably only time with a capital 'G' ;)).
"It is a mistake to think you can solve any major problems just with potatoes." (Douglas Adams)

Offline Ragwing

  • Comodo's Hero
  • *****
  • Posts: 3497
Re: Ping reply
« Reply #4 on: August 17, 2007, 05:38:35 AM »
(didn't happen with 2.4).

That says you don't use 2.4 anymore, as 'did not' is about the past.

Anyways, I don't use CPF 3, so I don't know anything about it.
But can you possible apply the rule that N.T.T.W posted?
My suggestion is to look in network rules and see if you can create a rule similiar to N.T.T.W's.


Ragwing

Offline Mike1959

  • Comodo Member
  • **
  • Posts: 46
Re: Ping reply
« Reply #5 on: August 17, 2007, 06:33:59 AM »
I too am getting the 'failed' result because my system 'REPLIED to our Ping (ICMP Echo) requests'
can anyone please help me to stop this happening in the latest beta version in vista?
I did add the additional rule regarding the ICPM echo but it still didn't work.

any help would be very much appreciated.

many thanks.

Mike.

Code: [Select]
http://img362.imageshack.us/img362/190/snag1gm0.jpg
« Last Edit: August 17, 2007, 07:02:55 AM by Mike1959 »
~~~~~~~~~~~~~~~~~~~~
Windows 7 Ultimate 64bit
Intel Core 2 Duo E6850 3.00Ghz
nVidia GEForce 8600 GT
4.0 Gig Ram
~~~~~~~~~~~~~~~~~~~~

Offline grampa

  • Comodo's Hero
  • *****
  • Posts: 392
Re: Ping reply
« Reply #6 on: August 17, 2007, 08:01:32 AM »
Hey everybody and thanks for your ongoing support!!!
Unfortunately, N.T.T.W.'s 'big picture' ends after rule 5. Fortunately, I learned a lot from the folks here at the forum, so I think I understand the workings of network rules quite well - hopefully well enough to solve my problem.
Again UNFORTUNATELY, I don't know an awful lot about the workings of pings etc.
However, if I find the time, I'll have a closer look at my ruleset and am sure I'll come up with a solution, which - this goes to Mike1959 - I'll post in this thread for sure. Don't know when I find the time though  :P.
Cheers,
grampa.
P.S. Maybe N.T.T.W. can post his rule #7 again ?

EDIT: N.T.T.W., tried again and the picture is now working. Thanks a bunch!
"It is a mistake to think you can solve any major problems just with potatoes." (Douglas Adams)

Offline grampa

  • Comodo's Hero
  • *****
  • Posts: 392
Re: Ping reply
« Reply #7 on: August 17, 2007, 04:23:20 PM »
Hiya,
had several problems with CFP and CAVS beta versions so I decided to go back to my old setup. But...now even CFP v2.4 replies to echo requests. I have the same block rules as N.T.T.W. but my computer still happily replies to shields up's echo requests. Consequently, checking CFP log files, I can find nothing about any pings blocked.
Any ideas?
As I said before, in the good old days I passed the test (true stealth) even without the default network rules.
I did, however, disable some windows services. Maybe that's the key to...... hm, thinking about it, a block rule for echo request should actually do the job even if all 'evil' services are enabled.
Thanks for your suggestions.
grampa.
"It is a mistake to think you can solve any major problems just with potatoes." (Douglas Adams)

Offline Ragwing

  • Comodo's Hero
  • *****
  • Posts: 3497
Re: Ping reply
« Reply #8 on: August 17, 2007, 04:34:27 PM »
Here's another great way to block ping with Windows built-in IPsec that you might take a look at:
http://www.petri.co.il/block_ping_traffic_with_ipsec.htm

You may try it, tho I understand you want to make CPF 2.4 block ping, and I have no idea why it doens't block if you got a rule to block ping...


Ragwing

Offline gibran

  • Average User
  • Comodo's Hero
  • *****
  • Posts: 5056
  • A bad workman always blames his tools
Re: Ping reply
« Reply #9 on: August 17, 2007, 05:20:48 PM »
Hallo,
please set a ICMP echo request block in network security policies\Global rules.

[attachment deleted by admin]
"In the beginning the Universe was created. This has made a lot of people very angry and has been widely regarded as a bad move."- Douglas Adams

soyabeaner

  • Guest
Re: Ping reply
« Reply #10 on: August 17, 2007, 05:22:15 PM »
Remove any routers and re-scan.  Default 2.4 rules already block ping.

Offline panic

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11815
  • Linux is free only if your time is worthless.;-)
Re: Ping reply
« Reply #11 on: August 17, 2007, 05:22:55 PM »
Hiya,
had several problems with CFP and CAVS beta versions so I decided to go back to my old setup. But...now even CFP v2.4 replies to echo requests. I have the same block rules as N.T.T.W. but my computer still happily replies to shields up's echo requests. Consequently, checking CFP log files, I can find nothing about any pings blocked.
Any ideas?
As I said before, in the good old days I passed the test (true stealth) even without the default network rules.
I did, however, disable some windows services. Maybe that's the key to...... hm, thinking about it, a block rule for echo request should actually do the job even if all 'evil' services are enabled.
Thanks for your suggestions.
grampa.

Hey grampa,

Are you CERTAIN it's not your router responding to ShieldsUp? 'Cause it will.  ;)
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the  Comodo Forum Policy.
If you can't conform, don't use the forum.

Offline grampa

  • Comodo's Hero
  • *****
  • Posts: 392
Re: Ping reply
« Reply #12 on: August 17, 2007, 05:33:56 PM »
Oh boy, me brains have rusted. Of course it's my router.
Thanks everybody and please forgive my stupidity.
 :-\ :-\ :-\ :-\ :-\ :-\
Boy, I'm embarassed!
I truly deserve the name grampa (brainwise ;D).
Cheerio,
braindead!

Can anyone plz post a screenshot of the default rules? They work perfectly for me and I messed with them! Would be much appreciated!
"It is a mistake to think you can solve any major problems just with potatoes." (Douglas Adams)

soyabeaner

  • Guest
Re: Ping reply
« Reply #13 on: August 17, 2007, 05:40:25 PM »
You're doing better than your son:

Offline grampa

  • Comodo's Hero
  • *****
  • Posts: 392
Re: Ping reply
« Reply #14 on: August 17, 2007, 06:03:01 PM »
 (:CLP) (:CLP) (:CLP)

He may be gluttonous but he's smart  ;)

But look at what I can do:


[attachment deleted by admin]
"It is a mistake to think you can solve any major problems just with potatoes." (Douglas Adams)

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek