Hi im using Utorrent and for me new comodo firewall.Now my utorrent client shows red sign
(Network Problem)I configure it In settings Network Monitor:-Allow TCP/UDP.Everything i allowed (Thr is 5 options ) from 5 thr is 1 BLOCK and Log that is only block.yesterday whn its not working i allow it thn everything was fine but today i block it again to look whr is the problem but i see in my client not green sighn ( NEt problem) so i Allow this but not working as well…
Hi im using Utorrent and for me new comodo firewall.Now my utorrent client shows red sign
(Network Problem)I configure it In settings Network Monitor:-Allow TCP/UDP.Everything i allowed (Thr is 5 options ) from 5 thr is 1 BLOCK and Log that is only block.yesterday whn its not working i allow it thn everything was fine but today i block it again to look whr is the problem but i see in my client not green sighn ( NEt problem) so i Allow this but not working as well…
Please open Network Monitor to full-screen size. Capture a screenshot, and save that as an image file (png, jpg, or gif); then attach to your next post using the “Additional Options” (bold red letters) immediately below the text box.
Also go to Activity/Logs. Right-click an entry and select “Clear all logs.” Then run your p2p application. When you don’t get the green light, go back to Activity/Logs. Right-click an entry and select “Export to HTML.” Save the file and reopen it (it will open in your browser).
Go to the very bottom/lowest entry (this will be the oldest). Highlight approximately five (5) entries; right-click and Copy. Then Paste into your next post here. If your external IP address shows (it will match up to the IP showing in the lower-right corner of your posts), you may mask/edit it with “x” for privacy.
This will show us:
What your current network rules are.
What Comodo is doing to block your p2p app.
LM
PS: I’ve merged your post from the Firewall FAQ on p2p applications thread. We would ask that you not post the same question/issue multiple times - that makes it very difficult for us to provide the proper support for all users. Tnx for your cooperation and understanding.
There are two things you need to change there, Jhon01.
First, remove Rule ID 1 (the 2nd rule from the top). In its place you want a rule built this way:
Action: Allow
Protocol: TCP/UDP
Direction: Out
Source IP: Any
Destination IP: Any
Source Port: Any
Destination Port: Any
This is your “browsing and email” rule; it’s one of the default rules.
The next thing to do (and this is very important!) is to go to the current Rule ID 5 (the very last/bottom rule), right-click and select Add/Add After. Build the rule like this:
Action: Block & Log
Protocol: IP
Direction: In/Out
Source IP: Any
Destination IP: Any
IP Details: Any
This is your protective safety net; it is also a default rule.
The rule you have for your p2p app in position ID 0 (the top rule) is exactly what you need (which you see by the green light). I would suggest that you edit it and remove the logging; if you log all p2p inbound connections, all your computer resources are going to be used to log the connection… Not so good.
Yes, you need to change the Network rules that are currently:
IP in/out
and
IP Out
I have attached a screenshot of each one, for how it should be (so you can see). I labeled each picture according to the rule it should replace. I apologize that I do not have v2.4 on my computer; these are taken with v3 Beta, the colors are different, but the rule window is basically the same.
For Rule ID 5, you’ll see the checkbox “Create an alert if this rule is fired” - this is what makes it a “Log” rule.
Your rule #0 is incorrect. It shows Destination Port as 60505 whereas it should show as “Any”. Here’s a pix of my setup with the correct settings shown at the bottom of the image.
I think I’m getting confused myself now. If your rule #0 is correct, then you seem to be missing the rule #0 which I have configured. I believe that to be a default rule since I don’t recall creating it myself.
I think we’d better wait for Little Mac to respond again because what I have configured may also be incorrect (as far as the default rules are concerned).
Thanks for quick reply but i read in this forum before somewhere this should be your port number which one u using in your client.So im confused …But if this one if i have to change to Any Please reply me…
P.s. In first screenshot 0. Number thr show i setup port .Why this shows when i double click on this but when i right click and Add-Add after thn shows everything Any.
so what should i do…double click or Add -Add after…Whats the diffrence??
And yes im waiting for Little Mac,s help…if he can check all my screenshoots from up …and confirm me if yhis is all correct or i need to change somewhere…
Zito - yes, you’re confused… Your rule 0 is Jhon01’s rule 1. He’s okay that way.
Jhon01 - your rules are fine, and you are secure, just as they are.
I do suggest two minor changes, and only these two. They are not security issues, just minor changes.
Rule ID 0 (the very top rule) - as shown in your attached “New Picture (1)”. Double-click the rule to open it for editing. Then un-check the box that says “Create an alert if this rule is fired.” You really do not want to be logging all your p2p connections - that’s too much traffic to log.
Rule ID 6 (the very bottom rule) - as shown in your attached “New Picture (3)”. Double-click the rule to open it for editing. In the box for Direction of traffic, change it to “In/Out” instead of just “In.” This way you will block any other unauthorized Outbound protocols. It is just an extra measure of security.
As for doing the: right-click and Add/Add After (or Before)… that is simply a quick easy way to create a new rule and have it placed exactly where you need it to be. That way you do not have to use the “Move” arrows to reposition the rule after creating it. If you simply click the “Add” button to create a new rule, it will be placed at the bottom (which might not be the correct place for it). So right-click/Add/Add Before (or After) is just a way to be more efficient.
If you are seeing different results to edit a rule whether you double-click or right-click and select Edit, it’s probably because you are inadvertently right-clicking on the incorrect rule. You may find it helpful to single-click a rule to highlight it (to make sure you have the correct one) and then right-click and select the option you want.
I do have a question though. You seem to be using a different version of the firewall to the rest of us. Your screenshots in this post include the option to configure settings according to the MAC address. I don’t have that on my version. Similarly, the Help link in the bottom left hand corner is also missing in my version. The latter is not so important since hitting F1 displays the Help option for that particular topic (for the benefit of anybody that doesn’t know that), but I just wondered if your version behaves differently to the one the rest of us are using.
Hi Zito r u asking me or Little Mac if u ask Him thn read up whr he mention( I apologize that I do not have v2.4 on my computer; these are taken with v3 Beta, the colors are different, but the rule window is basically the same. )
So i think now everything is clear or wait for Little Mac’s answer…
And at last Little mac why in my clients Logger shows Error opening Windows Firewall( I disable windows Firewall) or only i need to clear log only .
And about Upnp if i disable it not works but when i enable it works…when i installed my Adsl modem or router from my ISP they told me i have to enable UPNP so now what should i do or this is okey…
You’ll note in my post w/screenshots, I explained they were taken with v3 Beta, rather than 2.4 (which I don’t have at the present). v3 has some additional options, including the use of MAC address. The user-end of the process is essentially the same (ie, the way we interact with the rules to get the end result); however, the architecture (ie, the way it works internally, behind the scenes) is significantly different.
You may have a service related to WinFW that keeps trying to run it, or a setting somewhere that is interfering. I have found that WinFW is amazingly persistent in its desire to run; it can be disabled, but it seems to take some effort…
Please clarify for me, Jhon01, so I may understand better…
What UPnP is it that you are needing to enable for your ISP? Within the Router? Within Windows? (or both?)
I’m not sure why your ISP would say you have to have UPnP enabled, unless they’re wanting access through your router to your computer, LOL…
The point of disabling the UPnP feature within your p2p application is so that you can set the port to be used. The UPnP feature within the p2p apps is there to automatically select a port each time; this means the Inbound connection would fail within CFP. So by disabling UPnP within the p2p app, we can set the specific ports, and create CFP Network rules just for that.
Your rule 0 is Jhon01’s rule 1. He’s okay that way.