How can I block specific ports with the CIS 4 Firewall?

ad_hoc · September 9, 2010, 6:13pm

Hello.

I am running Comodo Firewall 4.1.150349.920 in a Win-XP(SP3) machine, and I want to specifically block ports 135–139 and port 445. This is one the least troublesome solutions to protect Windows from a recently reported flaw affecting DLLs handling in dozens of Windows apps. (On August 23, Microsoft released Security Advisory 2269637, which gives details about the flaw.)

I was a user of another firewall, Zone Alarm, in which I could easily and directly select the ports to be blocked. However, I am unable to find such a control in the Comodo Firewall. Is there a manner to do selective blocks ? TIA

Citizen_K · September 10, 2010, 9:41pm

Go to Firewall → Advanced → Network Security Policy → Global Rules and add the following rule

Action: Block
Protocol: TCP and UDP
Direction: Out
Description: block ports 135-139

Source Address: Any
Destination Address: Any
Source port: A port range : 135-139
Destination Port: Any

Do the same for port 445.

When done make the new rules are on top; you can drap and drop them. They need to be there because rules are read top-down.

ad_hoc · September 11, 2010, 5:05pm

Thank you for your help, EricJH. Will try that.