Help with Application Rules

Hi All,

Thanks in advance for helping me out with this problem. I have a server application that I want to allow to send/receive data to/from the LAN, but not to the Internet. I have my LAN setup as a Trusted Zone with the correct IP range. Here are the rules:

app.exe [Not in LAN] [any] [tcp/udp] [out] block
app.exe [127.0.0.1] [any] [tcp/udp] [out] allow
app.exe [In LAN] [any] [tcp/udp] [out] allow
app.exe [any] [any] [tcp/udp] [in] allow

Reboot PC after applying rules, however, app.exe is denied access to 127.0.0.1. The log indicates this is an Application block, not blocked by Network rule.

Any ideas?

Thanks,
Paul

Hi,
although I am not sure about this could you try the following rules?

general = Block, TCP/UDP, Out
Destination IP = Secure Zone (exlude)
Destination Port = Any

general = Block, TCP/UDP, In
Destination IP = Secure Zone (exlude)
Destination Port = Any

general = Block, TCP/UDP, Out
Destination IP = 127.0.0.1 (exlude)
Destination Port = Any

general = Block, TCP/UDP, In
Destination IP = 127.0.0.1 (exlude)
Destination Port = Any

general = Allow, TCP/UDP, Out
Destination IP = Secure Zone
Destination Port = Any

general = Allow, TCP/UDP, In
Destination IP = Secure Zone
Destination Port = Any

general = Allow, TCP/UDP, Out
Destination IP = 127.0.0.1
Destination Port = Any

general = Allow, TCP/UDP, In
Destination IP = 127.0.0.1
Destination Port = Any

ps. guys can you help?

Thanks for the reply,

Are suggesting to add these to my Network rules?
I’ll take a swing at this when I get to my home PC.

Paul

I think he meant application rules.

Great, thanks. I’ll let you all know how it works out.

Paul

I decided to completely trust the server application, so I removed all the rules for the app.exe from Comodo. Then, I stopped and restarted the service and answered “Allow” with the checkbox to remember the settings to all the Comodo prompts. Everything is fine now.

Thanks,
Paul

:■■■■