Use wireless net, I want to save bits stream(save money) ,so I only allow one applicaton connect internet;
When connect with wire, I allow some normal applicationes connect internet;
I often change the net type , wireless->wire->wireless->…, But I don’t want to change the Firewall config policy frequently.
How to config the COMODO firewall ?
Help me Please!
Hey and warm welcome to comodo forums:)
To be honest I don’t hard to understand what you want. Could you give me an example so that I understand what you mean. My advice is you to have “View Active Connections” on (CIS —> Firewall —> View Active Connections); here to can terminate connects that are not needed.
Enjoy you stay here at comodo forums! 
Regards,
Valentin N
For example:
Normally I connect to internet with ADSL, Some applicationes(such as MSN, BT,Thunder, Window Updater…) can connect to Internet.
when I connect to internet with 3G wireless, I only need MSN active and connect to internet.
then I assume that would be the best answer. My advice is you to have “View Active Connections” on (CIS —> Firewall —> View Active Connections); here to can terminate connects that are not needed."
Regards,
Valentin N
But before terminate BT propram, Large Data stream maybe been sent or received, This means money lost.
When only use msn, for instance, then you won’t have other connects than to msn, as far as I know.
You can terminate connection when you right-click on the wanted connection that you want to shut down.
Please wait for more accurate answer.
Regards,
Valentin
You could modify the rules for that programs so it only allows access if the source IP is the Wire IP address which should be one of your network zones.
Then create a second rule that blocks connections from any source IP to any target IP beneath the allow rule.
This should do the trick if your wire connection (router) always gives you the same LAN IP address.
A little example how I would do it with my setup.
I’m connecting to the internet via a router, this router has DHCP and reserves an IP address for a MAC address so the router always assigns the same LAN IP to my desktop PC.
By BT I guess you mean BitTorrent?
With my setup I would create 3 rules for BT.
1. Allow TCP or UDP, outgoing, Source-Address , Port , Target-Address IP/Port
2. Allow TCP or UDP, incoming, Source-Address , Port , Target-Address , Port
3. Deny TCP or UDP, IN and OUT, Source-Address , Port , Target-Address , Port
With this rules only connections from or to my wire LAN IP are allowed, any other will be rejected.
Depending on the setup of your wire connection this will also work for you and is the best way to go without the need to switch firewall configs.
Another option to achieve this if you don’t have a static LAN IP would be to do the above with the MAC address of your ethernet card.
You can get the MAC address by opening a command prompt and enter ipconfig -all into it.
Then look for the Ethernet-Adapter LAN > Physical Address, it should look like 00-0C-29-DE-2A-BB
Lasor, you are a newbie, you haven’t learned that Valentin N is affected by a compulsive pathology making him answer to everyone and everything including wen he doesn’t know what he is talking about (which is actually the most frequent situation).
There’s, as far as i am aware of, only a way to achieve what you are trying to do:
once your wire rules properly set, export them to a profile you shall name “ethernet” or whatever you like.
Now amend these same rules as to only allow, in a firewall customized policy, what you intend to connect in the wireless mode, and when done, export these rules as another profile, e.g. called “wireless”.
Now, import the appropriate profile before switching to the connection mode you are going to use.
Please refrain from personal attacks brucine.
Thank you.
-HeffeD
There’s no personnal attack, but only an observation made several times, and also by others than myself.
I am aware that a forum is a place where everyone is allowed to write what he likes, but it should maybe not systematically mislead people reading what is being written: the usual way for someone not knowing the origin or the answer of some problem is to avoid answering, not to answer whatever just hoping, one never knows, that it could work and thereby raise his posts number.
Such a systematic behavior is very pejorative to the whole of the Comodo forums, as it is not isolated but a real fllood, and shows a very bad image of these forums.
In this peculiar instance, and when the OP asks how to avoid automatic connections (and the money tied with them), the (repeated) advice to “close active connections” demonstrates that either the original question has not be read or understood.
The person having made such “answers” is of course allowed to comment what i said, but again, i am making no personal attack, but only an obvious observation everyone in this forum has already made in dozens of instances.
Even if assumed that your opinion is that i wrote some insanity, i remained courteous, and i don’t see why i should be the only one not having the right to do so (in a single instance as far as i am concerned)…
Observation or not, your post came across as an attempt to belittle another forum member.
Perhaps the better approach would have been to post the latter portion of your message, or simply correct the incorrect information?
Thanks for your understanding,
-HeffeD
Telling somebody has a psychological pathology is a personal attack. One that is dressed in the words of rationality though. But since you are not a trained clinical psychologist or psychiatrist, if I remember well you are physicist, you are not in the position to really judge such thing. I suggest you refrain from such judgments.
I am aware that a forum is a place where everyone is allowed to write what he likes, but it should maybe not systematically mislead people reading what is being written: the usual way for someone not knowing the origin or the answer of some problem is to avoid answering,Luckily the other forum members are thinking human beings like yourself. They just are able to filter the answer they need from the various replies.
not to answer whatever just hoping, one never knows, that it could work and thereby raise his posts number.Calls for speculation, your honour. This is derogatory comment base on speculations about Valentin's intentions.
Such a systematic behavior is very pejorative to the whole of the Comodo forums, as it is not isolated but a real fllood, and shows a very bad image of these forums.There are different channels to use than attacking Valentin.
In this peculiar instance, and when the OP asks how to avoid automatic connections (and the money tied with them), the (repeated) advice to "close active connections" demonstrates that either the original question has not be read or understood.That still does not justify your two derogatory outbursts.
The person having made such "answers" is of course allowed to comment what i said, but again, i am making no personal attack, but only an obvious observation everyone in this forum has already made in dozens of instances.You fail to see that you are mixing observation with insults at the same time.
Even if assumed that your opinion is that i wrote some insanity, i remained courteous, and i don't see why i should be the only one not having the right to do so (in a single instance as far as i am concerned)..Calling somebody insane is not courteous at all, Brucine. Please keep in mind Forum policy 8-3:
Offences based on age, sex, race, location, political affiliation, religion, cultural background or any other criteria.