Firewall Website Filtering

Having been on the receiving end of an Apple ipad “brick”, courtesy of Comodo Firewall, I have been following posts on the subject relating to the Itunes “Unknown” error 3014 with interest. I am running Comodo program version on a Windows 7 SP1 64k. As most of the posts relate to earlier versions of Comodo CIS, I think I can safely assume that the problem has yet to be fixed.

The latest work round that appears to work for those that have tried it, is to suspend the “Enable website filtering (Recommended)” under “Firewall/Website Filtering”. I have to say here that I have not tried this work round as every time error 3014 appears on itunes when updating the ipad, I have to give the ipad to some one who doesn’t have Comodo on their PC to get it to work. I don’t want to use up my options here unless it is really necessary! (Switching the Antivirus and Firewall both to off doesn’t make any difference and don’t suggest uninstalling/reinstalling CIS as that appears to be a whole barrel of worms in itself!)

What I am trying to understand is what “Website Filtering” actually does. I have read the Comodo help information and I think I understand the basics but when I go through the options nothing appears to be set. For example Under Rules there are only Allowed Sites and Blocked sites, which are both operative as a default, nothing being set under Categories. If you then edit “Allowed Sites” you end up with “Safe” sites and “Exclusions” both of which appear to have no further entries other than “Restrictions” which permit “Everyone” with an “Allow”. The “Blocked Sites” has the categories of “Malware” and “Phishing” with a “Restriction” of “Everyone” with a “Block” restriction.
If you then edit “Safe Sites”, “Exclusions”, “Malware” and “Phishing” you end up with the default Categories again which don’t appear to have any data in them.

So in summary, “Safe Sites” and ”Exclusions” under “Allowed Sites” both have all users to “Allow” and “Malware” and Phishing” under “Blocked Sites” has all users to “Block”.

So what is causing the problem with the Apple Update especially as nothing additional has been set? I would be interested to see what happens if the Blocked sites under rules are temporary switched off – has anybody tried this yet?

From the help link above, the following is from the text:-
“CIS also ships with two predefined rules, ‘Allowed Sites’ and ‘Blocked sites’, both of which are modifiable. If switched on, the ‘Blocked sites’ rule will proactively block access to websites in the ‘Comodo defined Malware sites’ and ‘Comodo defined Phishing Sites’ categories. If you wish, you can add other categories to this rule to expand its coverage. The ‘Allowed Sites’ rule will permit access to websites in the Comodo ‘Safe Sites’ category and ‘Exclusions’ categories.
The fourth preset, ‘Exclusions’, is empty by default but allows you to specify websites that should be allowed. You should add URLs to the ‘Exclusions’ category over time if you find you require access to a website which is blocked by a category”
From the above, if I read it correctly, Comodo is saying that defined sites for Malware and Phishing have access automatically blocked, whereas Comodo Safe Sites are permitted access. To me it looks like Apple Sites are falling to a rogue Comodo definition somewhere or Website Filtering is picking up some routines that are not fully explained within the Comodo Firewall.
Finally, is it just a simple matter of adding Apple sites to the “Exclusions” preset because the Comodo “Safe Sites” category has a deficiency somewhere that doesn’t include all the necessary data?
Any comments/views on the above welcome.

In my opinion, better to use a dedicated browser extension to block both malicious websites and advertisements.
Some great examples are ublock origin, adguard, adblockplus.

Few months ago I noticed that CIS sent some requests to Yahoo servers when website filtering was enable;msg798141#msg798141.

Nobody gave me a clear answer about why that happened, the only statement was “there is no reason for us to phone yahoo” (check the following link, scroll down to the last comment from Melih himself)

Funny answer considering that, upon every installation or update, CIS asks you to change the browser homepage and search engine to Yahoo…

That’s not good idea to use alot of browser extensions. They too will slow down the browser. I am sticking to my original plan. Go back and see what I wrote Jon.

That’s your opinion, I respect it, but I don’t agree.
ublock origin doesn’t slow down the browser and it can also block ads, which are another source of slow down.
If you prefer to use comodo website filtering and you are happy with it, go on with that.
I’ll happily go on with ublock origin :slight_smile:

And that is your opinion Jon. that is why Microsoft Edge does not allow extensions into it’s browser. Microsoft Edge is a very fast browser. It it was to have browser extensions, it will slow the browser down.

I like Edge too, but I don’t use it because it doesn’t offer an adblock.
You can have a look at these links about how ublock origin works and why it doesn’t slow down the browser too much

Right…It’s just like i have been saying. Microsoft Edge does not allow the use of extensions because of the slow down. I have asked Microsoft on this issue and they have confirmed it. No extensions for Microsoft Edge. That is why it always launches very fast. It is much faster than Google Chrome. And speaking of Google Chrome, there have been some privacy issues being detected in that browser. Privacy information is leaking. I have contacted Google on that issue, but it has not yet been fixed. That is why I use the more secure Chromium and Firefox Based browsers like Chromodo and Ice Dragon along with Microsoft Edge.