Author Topic: How To - Understanding & Creating Network Control Rules properly  (Read 262986 times)

Offline xarienne

  • Newbie
  • *
  • Posts: 12
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #150 on: February 20, 2008, 03:21:38 PM »

Hi There,

You all were very kind back in December in helping me make sure my NetCon rules were correct/secure.

But, alas, last week that particular computer decided its time with this world was done and, since my new computer has Vista, I've recently upgraded to CFPv3.

I've done the best I can with setting up my Application and Global Rules (based on what I'd had in v2.4), but must admit to some confusion with the new "Network Security Policy" area.

At this point, this is what I've ended up with (attached).

Could someone take a look through and let me know if there are any suggested changes I should make?

Many thanks, xari.




[attachment deleted by admin]

Offline panic

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11825
  • Linux is free only if your time is worthless.;-)
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #151 on: February 21, 2008, 05:45:18 AM »
Looks good. Nice compact set of global network rules. I'd double check whether Windows Sidebar really needs outbound access, though.
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the  Comodo Forum Policy.
If you can't conform, don't use the forum.

Offline xarienne

  • Newbie
  • *
  • Posts: 12
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #152 on: February 21, 2008, 08:00:33 AM »
Looks good. Nice compact set of global network rules. I'd double check whether Windows Sidebar really needs outbound access, though.


Will do. Thanks so much!  --xari.

[And I like your sig!]

Offline BuzzandWoody69

  • Newbie
  • *
  • Posts: 7
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #153 on: April 15, 2008, 04:35:39 PM »
Hi, first off can I say m0ng0d great post!  Its helping, me understand a lot.
Can I ask which verison you are currently using and why?

I'm new to Comodo and I'm still finding me way through "my new firewall world2!!!  :-TU
It would be very helpful tho, if you could update your post with a new guide for us newbie's for the latest verison!

Thanks again! :Beer

Josh123

  • Guest
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #154 on: April 17, 2008, 12:15:55 AM »
Hi, first off can I say m0ng0d great post!  Its helping, me understand a lot.
Can I ask which verison you are currently using and why?

I'm new to Comodo and I'm still finding me way through "my new firewall world2!!!  :-TU
It would be very helpful tho, if you could update your post with a new guide for us newbie's for the latest verison!

Thanks again! :Beer

Hi BuzzandWoody69 & Welcome to the Forums!  :)

The latest version can be found here

Version 3.0.21.329 is currently the latest. Release notes can be found here

Josh

Offline BuzzandWoody69

  • Newbie
  • *
  • Posts: 7
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #155 on: April 17, 2008, 04:50:32 AM »
Thanks for your reply Josh! (:WIN)

Offline ~Daniel~

  • I used to be indecisive, but now I'm not so sure.
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 906
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #156 on: April 17, 2008, 10:18:43 PM »
wow... almost 2 years later and this post is still helpful  (:AGL)  That is just awesome!

It just doesn't seem all that long ago that I spent 4-5 hours laying out, building, and tweaking this guide until I was happy with it... but when the lights came on when I finally "got it", I just had to write it down... I think the hardest part was looking past all the formatting code while I was writing/re-reading it... if you think the final output is long... you should see the complete code behind it...
 (:WIN)

I must confess though, I am still amazed that it receives less hits than pandlouk's Emule and bittorent tuttorials (:TNG)
OS: Win 10 Enterprise x64 build 1809
Comodo: CIS 11.X (latest version)
Backup/Imaging: Macrium Reflect Home v7.X
Win10 Phone: N/A
Personal Website: Comodo SSL (via CloudFlare)

Offline panic

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11825
  • Linux is free only if your time is worthless.;-)
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #157 on: April 17, 2008, 10:25:23 PM »
Quality, unlike you or I, doesn't age.  :)
As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the  Comodo Forum Policy.
If you can't conform, don't use the forum.

Offline eldoctor

  • Newbie
  • *
  • Posts: 2
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #158 on: May 12, 2008, 06:54:41 AM »
Hello...

Hope it is the right place to post my question.

I was happy to find a free firewall that I could use on vista x64. :)

Anyway, there must be something I don't get :

I am using Comodo Firewall 3.0.22.439, in custom policy mode.
I have a local network : 192.168.0.12/255.255.255.0 (my comodo computer is 12).

In network security policy, I have one global rule :
"Allow All Incoming Requests If The Sender Is  In [Local Area Network #1]". Local Area Network #1 is 192.168.0.12/255.255.255.0.

When 192.168.0.11 starts a vnc connexion to 192.168.0.12, Comodo FW on 192.168.0.12 tries to learn application behaviour (incoming) for winvnc4.exe.
I would have thought that my global rule would have covered this case...

Anything I got wrong?


Thanks!

Offline panic

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 11825
  • Linux is free only if your time is worthless.;-)
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #159 on: May 12, 2008, 07:47:32 AM »
G'day and welcome to the forums.

What is happening on your system is actually what is supposed to happen.

The network security policies determine HOW something can get in or out.
The application rules determine WHAT can get out. 

Your global rule covers the fact that a port needs to be opened. The application side of things is monitoring what application is using that opened port. If no application is running, CFP will stelath the port, even if you have a rule that says it is needed.

Think of this as "adaptive stealthing".

Hope this helps,
Ewen :-)


As your mums would say, "If you can't play nice with all the other kiddies, go home".
All users are asked to please read and abide by the  Comodo Forum Policy.
If you can't conform, don't use the forum.

Offline eldoctor

  • Newbie
  • *
  • Posts: 2
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #160 on: May 12, 2008, 09:03:55 AM »
Well... Not easy...

Anyway, with your help and the online help also (should have looked there first ;) ), I think I will manage it... :)
« Last Edit: May 12, 2008, 09:12:26 AM by eldoctor »

Offline aly

  • Comodo Member
  • **
  • Posts: 29
Re: How To - Understanding & Creating Network Control Rules properly
« Reply #161 on: September 27, 2008, 07:37:28 PM »
Hi, I'm new here.
I just wanted to say thank you for this wonderful tutorial! Good job!! It's really helpful!  (M)

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek