Comodo Firewall: Specific Program; Block all Traffic Except FTP?

viking2ev · January 30, 2012, 11:31pm

How do I configure the firewall (Standalone v5.9) for a particular program to block all internet traffic except for FTP traffic?

Is it possible?

TIA!!

Radaghast · January 31, 2012, 12:45am

Take a look at minimum application rules for connecting to the internet but replace Internet Explorer with your FTP application.

viking2ev · January 31, 2012, 12:53am

Thanks, but I think that you misunderstood.

I have a particular program that “calls home”. It also has a built-in FTP client. I do not want to allow this program to perform any communications, except for FTP (in/out ok).

I also do not want to limit other programs (unless they are already individually blocked of course).

Radaghast · January 31, 2012, 1:19am

Can you tell us what the application is, as I’d rather not guess the rules required. However, if the application only ‘phones home’ over http you can create a rule that specifically blocks that connection but allows everything else.

viking2ev · January 31, 2012, 3:27am

File-manager Directory Opus

Radaghast · January 31, 2012, 5:21am

Have you disabled the ‘Check for Updates’ in Settings/Preferences/Internet/Updates? If you have and you still want to create some firewall rules, it appears Opus uses a couple of locations during the update process:

Softlayer CDN - 67.228.0.0 - 67.228.255.255
Google - 173.194.0.0 - 173.194.255.255

You can block these ranges specifically, but it’s possible Opus may use other content delivery networks for hosting, so it may simply be easier if you create a rule that blocks TCP Out on Port 80:

Application Name - Opus
Action - Block
Protocol - TCP
Direction - Out
Source Address - Any
Destination Address - Any or use the ranges above (use a Network Zone
Source Port - Any
Destination Port - 80

(for the ftp part)

Application Name - Opus
Action - Allow
Protocol - TCP
Direction - Out
Source Address - Any
Destination Address - Any
Source Port - Any
Destination Port - 21

Application Name - Opus
Action - Allow
Protocol - TCP
Direction - Out
Source Address - Any
Destination Address - Any
Source Port - Any
Destination Port - Not in Privileged Ports (this is a Port Set

Depending on your FTP needs, you may also have to add

Application Name - Opus
Action - Allow
Protocol - TCP
Direction - In
Source Address - Any
Destination Address - Any
Source Port - 20
Destination Port - Any

viking2ev · January 31, 2012, 5:39am

Yes, I have disabled ‘Check for Updates’, but I am told that dopus still calls home.
Thanks for you help. I will try the above.