are safe my global rules , maybe my last question

Help for v3
#1

Hi
i guess is my last question
but i uninstalled outpost ,and i use it for years and install comodo , and i have many issue

can you tell me if my rules are safe?

  1. firewall–>stealth port wizzard -->block all my incoming connection

2)global rules of firewall i move up (they are the first there 3 rules for utorrent & emule

  1. rule
    description utoorent
    action allow
    protocol tcp & udp
    direction in/out
    source address any
    destination address any
    source port any
    destination port 54193 ( the port of utorrent)

description emule
action allow
protocol UPD
direction in/out
source address any
destination address any
source port any
destination port 5993
3)
description emule
action allow
protocol TCP
direction in/out
source address any
destination address any
source port any
destination port 24186

after these rules , they come the rules made by stealth port wizzard → block all my incoming connection

have a nice day

#2

They look OK, but there is one minor change I would suggest.

Rather than using IN/OUT as the direction for each rule, I would suggest having separate IN and OUT rules. This way, if there is a problem with a connection, you can enable logging on separate rules to more easily determine which one is at fault.

Cheers,
Ewen :slight_smile:

#3

by the way so i have 3 ports open right?

#4

The ports are only opened as and when they are needed by the applications that use those ports. The ports are not left open permanently, unless you run the P2P software permanently.

#5

but with a rule like this

1) rule
description utoorent
action allow
protocol tcp & udp
direction in/out
source address any
destination address any
source port any
destination port 54193 ( the port of utorrent)

i tried in pc flank to check 54193 and it found open even i did not run utorrent

wich are your global rules?

#6

The PCFlank test is a joke - nothing but a joke.

If you run their leak test AFTER HAVING PHYSICALLY REMOVED YOUR INTERNET CONNECTION (that’s right - yank the cable out) and run their leaktest, it will still magically report that your firewall has failed and your data has been transmitted.

By osmosis???

Try going to another PC and doing a port scan on your IP.

Ewen :slight_smile:

#7

LOL Panic…I never tried that.

#8

Hey Mantra. I made a suggestion to you awhile back and you made no comment. If you really want to be secure you best defense is a hardware firewall. Relying mainly on a software firewall in my opinion is not a good choice. I hardware firewall can stop your inbounds with no configuring needed. I have a hardware firewall to stop my inbounds. I use Comodo as my program control and HIPS protection. I can uninstall Comodo and shut off Windows Firewall and still pass all tests fully stealthed.

#9

either PCFlank is not testing your PC or utorrent failed to close correctly and was still running in the background. Even without any firewall it’s impossible to have a open port if there is not an application listening on that port.

#10

Did you send uTorrent to the tray or did you completely close it out? I agree with ggf.

#11

i shut down it

#12

but in short with this rule at the first place

  1. rule
    description utoorent
    action allow
    protocol tcp & udp
    direction in/out
    source address any
    destination address any
    source port any
    destination port 54193 ( the port of utorrent)

leave a port open the 54193 at last is not stealth
if this rule is the first!

but shieldup tells me the same thing
if i check the port 54193 the test tells me is open

#13

i added a rules to the first
block
icmp
in/out
icmp -->echo request
so my open port are stealth :smiley: (L)

#14

So post this back at Wilders since you fixed your problem. If you used the stealth port wizard for P2P you would have already had a rule for echo ping.