I need to accomplish a simple task - setup a rule for an application to be able to access anything on my wired/wifi network but NOTHING outside of my network (internet/WAN). I have spent hours and I cannot make the things work.
More specifically, I need an application to be able to access a wifi connected printer on my router but NOT the internet, the printer has a local IP of 192.168.001.103.
Add the application that you want to create rules for to the firewall application rules and create the following rules in this order:
Action: Allow Protocol: IP Direction: Out Source Address: Any Destination Address: Type: IPv4 Subnetmask IP: 192.168.1.103 Mask: 255.255.255.0 IP Details: Any
Action: Block Protocol: IP Direction: In/Out Source Address: Any Destination Address: Any IP Details: Any
Thanks for the reply. Please see the attached screen shots, rules were created as advised, the application is now totally blocked and cannot access the printer. Please also see that I can ping the printer at the given IP.
[attachment deleted by admin]
Make sure the allow rule is above the block rule as rules are processed in the order they are listed.
Yes, as advised, the ‘Allow’ rule is at the top.
May be if we can change to a generic rule without specifying an IP - it might work, by allowing the application to access any device on the local network but nothing on the internet/wan. Just a thought. If so, what modifications need to be made to the 2 rules you suggested ?
What does the firewall logs say for blocked events? Also in the firewall settings do you have Block fragmented IP traffic enabled? If so disable that setting as communication with printers seem to use fragmented packets and the firewall will block such traffic even with allow rules in place.
Fragmented IP traffic is NOT blocked.
Please see the log screen shot.
Just to give you a background, it was all working nicely until l 2 days ago when I un-installed an un-related application that had the install process monitored using Total Uninstall - After that I noticed that the rules I had in Comodo regarding this application that needs to access the wifi printer were lost. I re-created them but they do not seem to work now, I had a similar event a while ago that corrected itself after FW was updated to its current/latest version.
May be the Total Uninstall deleted some registry keys and messed up the FW, the question then is how to correct it without complete removal and reinstall of CIS ?
[attachment deleted by admin]
You can run a diagnostic from the main GUI window click ? > support > diagnostics. If that doesn’t fix the problem then you’re most likely have to re-install CIS.
I answered in your other topic. Please continue there on this subject.
Can you see what happens when you use the exclude option under Destination Address in a rule that blocks all IP IN and OUT?
Maybe add BroadCast and MultiCast ranges as allowed to the rules.