CIS and P2P

Hi all

I am currently using comodo to see if it will suit my requirements. I am running Vuze 4.6.02 and have been using the client for many years. I have recently dumped ESET smart security as I found it was interfering with my network shares. I have noticed that CIS firewall seems to block my listen ports now and again. If I place the app into training mode then it allows them again. I have all relevant P2P rules set in my global options for incoming and outgoing ports.

How long do I need to leave the app in tranining mode for it learn the beahviour? Is training mode a safe state to leave the firewall in? Does this apply for both DEF and firewall?

I am reviewing different products and so far I really like the Comodo interface. If I can resolve my forwarding issue I may purchase the product. It would appear that after training mode has learnt a behaviour it seems to lose it after a few days? and I have to re-train it?

All help greatly appreciated

Ice

Hey and warm welcome to comodo forums!

You shouldn’t have CIS in training mode more than 10 min. Make sure that this application isn’t blocked or having problem with d+.

Since you have dumped ESET I suggest you use their removal tool in safe mode as admin. Removal tool

if this doesn’t help please attach screenshots of your firewall events and eventually d+ to make sure that CIS isn’t blocking this application of yours.

Regards,
Valentin N

I think that the following rules work for all P2P clients.

The thread can be found in the ‘Guides’ section.
https://forums.comodo.com/guides-cis/firewall-tutorial-for-utorrent-with-comodo-internet-security-t15677.0.html

Go to : Firewall → Network Security Policy → Predifined Firewall Policies ->and select Add

Give a name at the new Predefined Policy for example: utorrent (or in your case Vuse)

Add the following rules:

Rule 1
Action = Allow
Protocol = TCP or UDP
Direction = In
Description = Rule for incoming TCP and UDP connections
Source Address = Any
Destination Address = Any
Source port = A port range = (start port = 1025 / end port = 65535)
Destination port = the port of utorrent (or in your case Vuse)

Rule 2
Action = Allow
Protocol = TCP
Direction = Out
Description = Rule for outgoing TCP connections
Source Address = Any
Destination Address = Any
Source port = A port range = (start port = 1025 / end port = 65535)
Destination port = A port range = (start port = 1025 / end port = 65535)

Rule 3
Action = Allow
Protocol = UDP
Direction = Out
Description = Rule for outgoing UDP connections
Source Address = Any
Destination Address = Any
Source port = the port of utorrent (or in your case Vuse)
Destination port = A port range = (start port = 1025 / end port = 65535)

Rule 4
Action = Ask (enable Log as a firewall event if this rule is fired)
Protocol = TCP
Direction = Out
Description = Rule for HTTP requests
Source Address = Any
Destination Address = Any
Source port = A port range = (start port = 1025 / end port = 65535)
Destination port = 80

Rule 5
Action = Block (enable Log as a firewall event if this rule is fired)
Protocol = IP
Direction = In/OUT
Description = Block and Log All Unmatching Requests
Source Address = Any
Destination Address = Any
IP Details = Any


Start utorrent (or in your case Vuse).
When Comodo asks you with a popup, choose “Treat this application as”
select utorrent (or in your case Vuse)
and enable “Remember my answer”.

Then “un-stealth” your ports with the “wizard”
but “re-stealth” them when you’re done.

If you have just a modem, you may need to add a rule
(above the last block all rule) to allow outgoing DNS requests such as:
F.Y.I. - I have a modem (no router) and I didn’t have to add this rule

Action = Allow
Protocol = UDP
Direction = Out
Description = Allow Outgoing DNS
Source Address = Any
Destination Address = Any (or your ISP’s DNS server for extra security)
Source port = Any
Destination port = 53