Comodo newbie. GRC shields up gives me failing scores.

Comodo Internet Security - CIS Firewall Help - CIS
#1

System: a8n sli motherboard standard. 3800+ cpu. Windows XP home.

ISP Clear wireless. Wireless modem etc.

Here’s my story.

Back in the day I used Black ICE firewall when I used Dial up with a direct connection to the internet. What I thought was fascinating is BI would show you if you wished to see it, very easily, the internet events and activity with one click on its interface. It was like looking into a mysterious undercurrent of activity you dont usually get to see. I’d see attempted attacks on DNS servers etc in real time. Loved it. Absolutely fascinating look into the underbelly of the net.

Nowadays you either got a router between you and the net or Windows Firewall or somesuch and nothig tells you anything interesting. Now with clearwire I have a direct connection to the net but the modem has its own firewall so I dont have to worry about that. However I decided I want to know whats going on out there for fun. The closest free firewall I could find that might have the ease of seeing traffic like BI gave me seemed to be Commodo. So I downloaded and installed Comodo. Disabled the Clearwire modem firewall. Went to GRC.COM and the system performed an epic fail. I had only like 5 stealthed ports, I think that was my ISPs doing. I had services wide open to the net. yikes!!

Ok what am I doing wrong?

#2

Hello :slight_smile:

It is still testing your router; not your Personal Computer :slight_smile:
To Prove Such Theory;

Go to Firewall > Stealth Port Wizards > (Bottom Option)

then Run the test again

Hope this helps

Jake

#3

I did that and it still failed. I dont have a router. I have a modem. It is not a router.

#4

It actually has an option to disable NAT on the router. Should I do that? That would make it routerish I suppose.

#5

On what ports is stealth’d

Sorry ; Router/Modem
Physical/Network OSI Layer etc etc :slight_smile:

Jacob

#6

on my modem there is a firewall disable option but no option to disable NAT routing. So the ports its reading as unstealthed and those open are indeed probably from the modem. Would putting my system on the DMZ would open me up for a direct connect to the net wouldnt it? I’ll post a grc report here in a moment.

#7

GRC Port Authority Report created on UTC: 2011-01-28 at 08:55:57

Results from scan of ports: 0-1055

2 Ports Open

1043 Ports Closed
11 Ports Stealth

1056 Ports Tested

Ports found to be OPEN were: 443, 1024

Ports found to be STEALTH were: 1, 55, 77, 80, 135, 137, 138,
139, 411, 412, 445

Other than what is listed above, all ports are CLOSED.

TruStealth: FAILED - NOT all tested ports were STEALTH,
- NO unsolicited packets were received,
- A PING REPLY (ICMP Echo) WAS RECEIVED.

#8

Ok I’m trying something else now. I believe I put my computer in the DMZ by inserting its lan address into the dmz (192.168.15.2) if I remember correctly how to do it.

Went to shields up again. The modem firewall is still up. Did GRC scan and it came out perfect. However would it still firewall me on the DMZ? Comodo made not a peep during the scan. Do I need to disable the firewall?

GRC Port Authority Report created on UTC: 2011-01-28 at 21:15:10

Results from scan of ports: 0-1055

    0 Ports Open
    0 Ports Closed
 1056 Ports Stealth
---------------------
 1056 Ports Tested

ALL PORTS tested were found to be: STEALTH.

TruStealth: PASSED - ALL tested ports were STEALTH,
                   - NO unsolicited packets were received,
                   - NO Ping reply (ICMP Echo) was received.