I want to block (incoming / outcoming traffic) all host names ranging from cds000.fra.llnw.net to cds999.fra.llnw.net . So it can be cds18.fra.llnw.net or cds376.fra.llnw.net no matter. I want to block them all. I tried using a global rule where I put in the host name via a wildcard like *.fra.llnw.net but it didn’t work. How can it be done? thanks
So nobody knows really? Is that basic function even possible with Comodo Firewall?
Using hostnames with Comodo isn’t very good since the name will only be resolved once per session(i.e per machine boot). Instead you should get the CIDR using something like IPNetInfo. Then convert the CIDR range to a CIDR Subnet mask. Using Networking Concepts — Understanding CIDR Subnet Mask Notation | pfSense Documentation can help.
If that’s too much work then just use IPNetInfo to get the IP range and use that instead.
I want to block (incoming / outcoming traffic) all host names ranging from cds000.fra.llnw.net to cds999.fra.llnw.net . So it can be cds18.fra.llnw.net or cds376.fra.llnw.net no matter. I want to block them all. I tried using a global rule where I put in the host name via a wildcard like *.fra.llnw.net but it didn't work. How can it be done? thanksFirst look up the ip address for cds18.fra.llnw.net That will give you the network name, then you can search the ip address range. I did the work for you so block all the ip address ranges shown on the website below https://db-ip.com/as22822
try this
Go to Comodo → Settings —> Firewall ----> Global Rules —> Click on “Add”
Action: Block
Under Source Address
go to ipv4 address range
enter start ip: 111.119.0.0
enter End IP: 111.119.22
Add description if you want
click ok
now create a new rule as before >:-D
This network has alot of addresss ranges so start typing :■■■■
You have to define each host name and then add it to the blocked network zones section. But I wouldn’t use it as there is an issue with the way CIS determines the IP addresses associated with a domain and it will block other domains inadvertently. Because it will take the lowest and highest resolved IP address and include the entire range between those two addresses. See the bug topic here.