I’d appreciate any help regarding using IP masks in CIS FW rules. The most urgent problem I have is I need to define a network zone correctly. I’ve gone through few articles but I still don’t get it.
I would like to define that all computers in my network zone has IP 10...* I already tried 10.0.0.0/255.0.0.0 and 10.255.255.255/255.0.0.0 and I used it for my FTP server rules but FW keeps giving me pop-ups.
I think I’ve found the cause of the problem. In one of my rules I’ve mixed source and destination port. Basicly I use two rules for my FTP exe which allow all IP from my network zone (LAN) access my FTP on passive port range and on port 21. The same two rules are also in Global Rules. Now I corrected the rules and I’m waiting for someone to access my FTP to test them.
My network range is 10.0.0.1 to 10.0.0.255 (I only use the last octet for my fixed ip addresses)
In Comodo I have a network zone defined as 10.0.0.0/255.255.255.0 and the two standard rules that Comodo makes when it detects a network are in the global rules list (at the top!)
Still I am getting pop ups on for example for svchost, dns, System on for example 10.0.0.214.
I wonder why this is, all the internal traffic as defined by the network zone should be allowed right?
Hope you can help me understand because this is driving me nuts for a long time now.
Do you mean by the Wizard the auto detected network when Comodo is first installed? Then the answer is yes but I manualy changed the values to 10.0.0.0/255.255.255.0 afterwards.
The firewall is in Safe mode at the moment because at least the allowed connections are remembered. But I would like to have it in Custom Policy Mode and not be bothered with internal traffic, but be warned when other traffic is going on.
The Global Rules are NOT also in the Application Rules tab.
And choose the first option to Define a new trusted network.
on the Next page choose the first option
I would like to trust an existing My Network Zone in the drop down menu select the zone.