DC++ and Comodo?

DeniseDD · October 31, 2006, 12:23am

How to make it work, without security being compromised, e.g. ONLY DC++ is allowed to connect, not any file. If that’s the only option ZoneAlarm from 4 years back does a better job than Comodo (Allow DC.exe, done).

This is what the log spits out right now:

Date/Time :2006-10-31 01:17:57Severity :MediumReporter :Network MonitorDescription: Inbound Policy Violation (Access Denied, Protocol = IGMP)Protocol:IGMP IncomingSource: 192.168.1.254 Destination: 224.0.0.1 Reason: Network Control Rule ID = 6

justin1278 · October 31, 2006, 12:33am

Hello,

Please try the steps below.

Open the Comodo Personal Firewall User Interface
Click Application Monitor
Scroll down and highlight the needed application
Right click and click Edit, or just keep it highlighted and press the edit button toward the top right.
Click the “Allow All Activities for this Application” option
Then click the “Allow invisible Connection Attempts” and “Skip Advanced Security Checks” options so they are checked.
Press OK

Please see if this resolves your issue.

DeniseDD · October 31, 2006, 1:01am

No, that gets “(Access Denied, ICMP = HOST UNREACHABLE)”. I told it to Learn the parent BTW.

justin1278 · October 31, 2006, 3:19am

Hello,

In that case you may wish to make a specific rule for this application in the network monitor, unfortunately since I do not use the program I cannot tell you how to set this rule. Also when you have created the rule in the Network monitor be sure to move it to the very top so that it will allow the application to pass through without being interfered with by the other Network Monitor Rules.

djet · October 31, 2006, 7:19pm

Try using Firewall with manual port forwarding setting in DC++ and manually open these incoming ports via Network Monitor rules.

It’s starting to be PITA creating more and more rules for every app that has listening ports. Why doesn’t CF create rules automatically or ask at least?

DeniseDD · October 31, 2006, 10:49pm

I found out it ain’t working with Comodo off either. I did add the specified port to my Zyxel 2602’s Foward list, and the internal firewall is off. My version of DC++ doesn’t have the option you named. Alternatives?

About Comodo, it’s very inconvenient indeed. Just opened a Word attachment in Outlook Web Access. EIGHT popups! It should just accept anything happening between 2 approved applications. What the fuck do I care whether it’s sending special window messages or it has an altered quadlogic terreflop data stream. Give me my document and quit bitchin’!!

Rotty · November 3, 2006, 1:13am

If you want your documents without it complaining, then you can expect a virus to take full effect without it complaining too!!

More automation means less security when being used by technically competent people (As the security is no longer in the competent hands of the user)

EDIT: Fixed up my slightly politically incorrect language.

cheers, rotty

DeniseDD · November 3, 2006, 2:03pm

If I tell Comodo applications A and B are cool, then does it matter what they’re doing? What’s the point asking me if it keeps warning?

djet · November 3, 2006, 6:43pm

Actually CF allow to create a rule for app A launched by app B.
What CF really lacks is automatic listening port rule creation for known and trusted apps.

DeniseDD · November 3, 2006, 6:52pm

And that should be a firewall’s first feature.

AOwL · November 3, 2006, 7:45pm

Have you made a network rule for the listening port in CPF?
You can also make a rule in there for ICMP.

DeniseDD · November 3, 2006, 8:29pm

Yes.

AOwL · November 3, 2006, 9:42pm

I reread the thread and i can’t see any info that you have created a trusted zone?
You mentioned in one post that you couldn’t connect even if CPF was off??
Is it still like that?

DeniseDD · November 3, 2006, 11:49pm

Yes.

Bighawk · December 18, 2006, 11:56pm

You need to make sure that your settings for dc++ on the network monitor settings are before the block & log permission. Took me a while to work that out

killabee44 · January 22, 2007, 10:53am

I am having the same problems searching with DC++ also. Have tried the above suggestions to no avail… Can anybody help with DC++ searching? Thanks.

DeniseDD · January 22, 2007, 11:01am

This solved it for me:

Setup DC++ to use port 5000.
Setup NAT of your modem/router to start port 5000, end port 5000, port translation start port 5000, port translation end port 5000.

Happy to hear if that was any help to you.

killabee44 · January 24, 2007, 1:09am

Denise,

I already had port forwarding set up properly since I was running DC++ along with Zone Alarm and it worked fine. I am able to log into DC++ fine but can’t search or get file lists.

killabee44

AOwL · January 24, 2007, 1:15am

Does your log in CFP show anything getting blocked?

killabee44 · January 24, 2007, 1:41am

I finally figured it out. The problem WAS my port forwarding… I had just set up a new pc and the router was assigning it a new lan ip address which I failed to update in the port forwarding settings. Thanks all for your help… :BNC