I’ve done a search for this and found no definitive answers, and I’ve posted on this and got no response from anyone, but I use cFosSpeed and it needs to be able to send/receive ICMP pings, so the question is HOW do I set up CPF to allow cFosSpeed to use ICMP rules.
I think you will need to create two network rules allowing ICMP. One allowing the request inbound (see screenshot) and the other allowing the reply (outbound). This will however, make your computer visible to others.
[attachment deleted by admin]
Thanks for the reply, I guess I should get onto cfos themselves to find out exactly why it needs to access ICMP but I suspect it has to do with the traffic shaping side of the program.
If you only deal with a limited number of IPs, then you could create a rule for each IP or IP Range. This way you would, at least, be invisible to the rest of the world.
Ok it seems that cFosSpeed needs to access ICMP pings both incoming and outgoing to do the calibration test for traffic shaping, so how do I set up a rule to allow these ICMP pings so that the firewall doesn’t block them till the calibration tests are completed.
See my first reply including screenshot. Create one rule allowing “Echo Request” inbound (so you can be pinged) and the other allowing “Echo Reply” outbound (so they receive a response). Once you have created these rules, place both above your “Block & Log” rule. As kail mentioned, you could define their IP’s as a range or add individually so you are not pingable by others.
Graham is right, and I have a tip to get it work better.
Instead of using the ip of your computer (which changes permanently if you/your isp are using dhcp) use the hostname. You can use the hostname for cfos too. cFosSpeed needs to ping to www.cfos.de in order to work, so if the ip changes your system setup is still up & running.
comodo recognizes the names correctly and it works flawlessly for me since a couple of weeks. 
I didn’t realise CF worked with hostnames. Awesome ;D. I should study CF more :-[.
Excellent lateral solution for dynamically assigned IPs. That one’s filed away.
Ewen
glad to help…
so this one could put to “resolved”, uh?
If nugar agrees, then he/she can edit the original post & append [RESOLVED] to the end of the Subject. A Mod could do it. But, it’s just better if nugar does it, since he/she is the topic originator.
I see where your coming from ;D.
so please help me to configure comodo to work fine with cfosspeed
please i am not so good with computers
can you write a guide pass to pass… like:
- …
- …
- …
thanks!
I don’t know if I must put my hotsname or cfospeed hostname in the source IP or in the destination IP ???
What would be the Hostname for for ip address 224.0.0.22?
PCBill
your hostname, because if you or your isp are using dhcp, the ip addresss allocated to you will change. using your hostname circumvents this.
hth
ewen
Another related question, if you (like me) have a router with the possibility to configure it NOT to answer to ping (ICMP) requests, do you need to enable ping requests in the router and then configure Comodo as described? Also i am a bit confused about the “hostname” part. The “real owner” of hostname in my example is the router, can i like give the router a random hostname and use the described Comodo settings? Im using cfosspeed and it seems to work fine, but im not sure it really does any traffic shaping?
ok…
rule 1: ICPM IN (echo request) Source IP (me or cfos.de?) Destination IP (me or cfos.de?)
rule 2: ICPM OUT (echo reply) Source IP (me or cfos.de?) Destination IP (me or cfos.de?)
??? ??? ??? ??? ???
(V)
Inbound traffic makes you the destination host, so your hostname is inserted as Destination IP
Outbound traffic makes you the source host, so your hostname is inserted as Source IP
Hope this helps
You cannot operate with 2 matching hostnames, in the same manner as you cannot have two identical IP addresses. Or MAC addresses. You will only get an “address mismatch” and the IP stack will fail on either of the two and you won’t be able to access the Internet.
If you make the router drop any inbound ICMP requests (as it should do), you don’t need to configure the same rule in the firewall. As these ICMP requests won’t be forwarded to your computer anyway.