Comodo firewall blocks my WINscp (ftp client)

Comodo Internet Security - CIS Firewall Help - CIS
#1

my problem is that CIS firewall blocks my WINscp ftp connection (port 21)

i have tried to add winscp as trusted application and tried some ports enabling but it doesn’t work
i got 2 screenshots to help you guys

i really need this ftp work, because i need it everyday

system info: windows 7 (also probs at win xp) and latest CIS
I didn’t have this problem later on

first screenshot where firewall enabled and connection doesn’t work
http://www.vehu.fi/et/winscp1.jpg

second screenshot where firewall disabled and connection works
http://www.vehu.fi/et/winscp2.jpg

at my screenshots you guys can see ports what needed to make working connection, maybe ? is there some hidden ports also what i can’t see which changes during disabling and enabling firewall ?

i also have problem with connecting my windows mobile based phone. maybe some ports blocking too, any ideas ?

#2

You can try this:

Firewall → Stealth Ports Wizard → Alert me to incoming then start your FTP client and when CIS pop ups for Ports press Allow

Hope that helped!

#3

yep that worked, though i have no idea what that did, but thx

#4

You welcome! :wink:

#5

jovan111p, your thread about you receiving no intrusion attempts is locked so I’ll answer here.

In Global Rules in Network Security policy, is the last rule in the list “Block and Log IP In from IP Any to IP Any where Protocol is Any” ? When you edit this rule the box “Log as a firewall event if this rule is fired” should be checked for the Firewall to log an intrusion attempt. I think it is unchecked by default.

#6

Yes its working! Thank you! I wounder is it the same protection with and without “Log as a firewall event if this rule is fired” checked!?

#7

You’re welcome! I think it’s better the box “Log as a firewall event if this rule is fired” is checked by default in the rule “Block and Log IP In from IP Any to IP Any where Protocol is Any” in Global Rules. Currently it is unchecked by default.

Yes you are still protected from intrusions whether or not the box “Log as a firewall event if this rule is fired” is checked, as when it is checked, the Firewall is blocking the intrusion and recording the IP source, etc. in the log.