Thanks to the newly available Comodo Firewall Professional v188.8.131.526, which I have successfully installed into my home PC equipped with Windows Vista Home Basic. However, as revealed by Gibson’s ShieldsUp!, it is recommended to protect against the Ping requests (ICMP echo). In this connection, I appreciate it much if any expert advice will soon be given on how to configure this firewall to work perfectly.
Do you connect to the internet via a router? If so, the IP address being tested by ShieldsUp is the IP address of your router, not the IP address of your PC behind the router (unless you have port forwarded ports 1 - 1026 from your router to your PC).
This can be verified by comparing the IP address being tested against the current IP address of your PC.
Thank you for your prompt response. I regret that my ADSL Ethernet modem is a simple and basic one. It cannot be configured to disable any ICMP echo (Ping request). In this connection, I have tried to add a new Global Rule “Block ICMP In From IP Any To IP Any Where Message Is Echo Request” as guided by the Firewall’s Help section. Regrettably, the rule does not work. Earlier before the new version 3 of this Firewall, I was told that it could be configured to block ICMP echo requests.
Block ALL ICMP IN. And retest.
There is block ICMP then Echo Reply and that’s the rule i use on 2.4
Hi Goose17 and Shinobiteno
Thank you for your advice.
I have added two Global Rules:
“Block ICMP In From IP Any To IP Any Where ICMP Message Is Echo Request” and
“Block ICMP Out From IP Any To IP Any Where ICMP Message Is Echo Reply”.
However, both cannot make GRC ShieldsUp! give a favourable response. Strange as I was aware of a positive one when I was using Internet Explorer 7 for scanning. After this, no more positive results reveal.
Appreciate if further assistance can be given.
[i]"Do you connect to the internet via a router? If so, the IP address being tested by ShieldsUp is the IP address of your router, not the IP address of your PC behind the router (unless you have port forwarded ports 1 - 1026 from your router to your PC).
This can be verified by comparing the IP address being tested against the current IP address of your PC."[/i]
If you are behind a router, you can do what you want to the software firewall and it won’t make a lick of difference.
If you’re not behind a router, let me know so I can stop typing this.
As noted from the user’s manual of my Prolink Hurricane 9000C which is an 1-port ADSL Ethernet modem, it has a router mode. However, this basic modem cannot be configured to disable any echo (ping) requests as confirmed by the supplier.
Though GRC’s ShieldsUp reported that my system had replied to its echo requests, its report showed that all ports were considered as “stealth”. Is it safe to assume that Comodo Personal Firewall has given my PC a good protection, or otherwise?
My apologies if I have troubled you further.
Provided one does not have a router, the first rule is enough to block the ping from GRC. Make sure that rule is placed above any blocking Global Rules because the order of priority is maintained from v2: top (highest priority) to bottom (lowest priority).
Thank you for your good advice.
The Global Rules’ priority may have to be mentioned on the firewall’s user guide for general information.
You’re welcome. The rules ordering is actually included in v3’s help file: Firewall Task Center > Network Security Policy > Application Network Access Control interface. Although I don’t see under the Global Rules, this ordering system applies to Applications Rules as well. But I agree that it should be highlighted as this is a very important fact to remember.
Anyway, is it working for you now or still no?
[attachment deleted by admin]
Hopefully, my home Windows Vista Basic can be well protected by Comodo Personal Firewall 184.108.40.2068.
According to the GRC Port Authority Report, the following is shown:
- All tested ports were stealth.
- No unsolicited packets were received.
- A Ping reply (ICMP echo) was received.
It seems that the situation cannot be improved since I have added the Global Rule on blocking the ICMP echo request as the first priority, in addition to the one “Block IP In From IP Any To IP Any Where Protocol Is Any”.
No software firewall running on a host can prevent the router (or any other host) from responding to a ping. The router is what is responding to the ping, not your host where CPF is running.
Yep. We forgot the obvious to prove it’s not the pc but the router or modem’s IP address just by going by GRC’s website itself. Also, why not check your CFP log or perhaps there is something left in Application Rules.
[attachment deleted by admin]