first of all, i wanna declare that i’m a fan of comodo. But i have an advice about firewall logs.
Nowadays, the ARP attacks are frequently in our Local networks. the Comodo firewall can protect my pc’s arp cache and log it, which is thoughtful to us. The firewall events log only include the attackers’ IP address, but excluding the attacker’s mac address which is necessary for us to submit the attackers’ informaton to our Network administrator.
Once i installed an anti-ARP firewall on my PC, but i think the comodo firewall is more powerful than this one, which showed me nothing! So, no matter what happened, i cannot get the attacker’s mac address!