First off, welcome to the forums.
1) if I have a Home Lan, you advocate replacing the default rules 0 and 1 with these. Is that correct?
I guess my "document" is getting a little outdated. In earlier CPF versions, new rules added through the wizard were placed at the bottom of the list (current verison now puts them up top where they belong)... therefore, you had to promote them to the top (raise them up higher in the list). Rules are handled/followed in the order listed... which is why any rule you create will need to be above the last rule which BLOCKS all in/out traffic.
I was not suggesting replacing any rules... simply reordering them.
2) What does Comodo consider a LAN? Actual computers talking to one another behind the firewall? What if I only have one computer, one printer, a wireless router and an external hard drive? Is that set up considered a LAN? If so, how come I never see any alerts when I connect to my external drive or printer? Note: I have seen Pandlouk's thread that recommends adding the IP address as the router as trusted (see I told you I always read first!), but I'm still working through that one because I'm not sure how to find the IP address of my 2WIRE wireless router. PS - if anyone knows how I can do that, please speak up, otherwise I'll post that question in my "questions to post" thesis coming up. I'm not sure if Pandlouk means put the WAN address or LAN address, or even how to know where to find it for the wireless router. I know how to do an "ipconfig", but not sure of which address I need, or even if "ipconfig" will give me the address Pandlouk speaks of.
Comodo considers nothing to be the LAN. The perspective to CPF is that it is alone in the world and cares only to protect the PC that it is installed on.
But by using the trusted Zone Wizard, we can tell Comodo that some IP (or range of IP's like a LAN IP Range) is considered friendly/trusted... allowed to talk with your PC. And there is no rule that says you can only have one trusted "zone".
The bonus of creating a zone is that it allows us to enter a limited number of rules. Imagine if you had a LAN of 10 PC's... to save you from having to enter 10 rules is why Zones are so handy.
But when the only other network device is your Wireless Router, then you should not have to create a zone at all.. but merely a rule (or rules) as Pandlouk's guide for keeping a wireless network secure suggests. In fact, if you did define wide zone, and someone did manage to hijack your internet connection (break into your wireless)... they would be on the same LAN as you and could possibly browse your PC and steal information.... not a good thing.
External drive and printers are
peripherals of your PC... unless they are network devices that use RJ-45 (ethernet) connections and grab network IP's.
If you currently have wireless connectivity, you should be able to use the "Gateway" defined/listed in ipconfig as your routers address.
3) If what I have is not considered by COMODO to be a "LAN", then do I need to change the COMODO default rule 0 and 1. Indeed, can I DELETE them if I do not have to replace them with the ones you recommend?
You are a LAN of one; 1 PC on a LAN network with no neighbor PC's. Take away your router, and you are not on a LAN.
You will need to
add (not replace) the rule(s) that Pandlouk has outlined in his wireless post, but using your Router's IP of course.
Hope that helps!
Oh, and make sure you enable WPA security on your Wireless router as well.
(S)
