When I connect to the internet via ISDN then CIS-Firewall (in Safe Mode) automaticly add a application rule for example svhost.exe.
Java Runtime where looking for updates and the Firewall also automaticly adds a rule.
Allow IP Out FROM IP ANY TO IP ANY WHERE Protocol IS Any
Is ther a solution, or must I use Custom Policy Mode?
While filtering network traffic, the firewall will automatically create rules that allow all traffic for the components of applications certified as ‘Safe’ by Comodo. (svchost.exe is trusted as part of Microsoft Windows and Java is also trusted as part of Sun Miscrosystems Inc.) For non-certified new applications, you will receive an alert whenever that application attempts to access the network. Should you choose, you can grant that application Internet access by choosing ‘Treat this application as a Trusted Application’ at the alert. This will deploy the predefined firewall policy ‘Trusted Application’ onto the application.
If you would like CIS to alert you for every internet connection attempt, Custom Policy Mode is the mode you should switch to. You will get an alert for all applications trying to connect to the net.