Manual D+ and firewall configuring

hello,
i am a new user of CIS and in comodo forum i don’t find how to configure manual defense+ and firewall. or maybe it is enough basic settings what i get after installation?
i think manual settings can be better, but i don’t know what to change and self i don’t want to test, because later can be problems ;D
if there are in forum somewhere about that properly just put link, i will read.

Best Regards

Defense+
https://forums.comodo.com/empty-t30473.0.html
Firewall
https://forums.comodo.com/empty-t30535.0.html

Hope this is what you were looking for.

that’s what i was looking for :slight_smile: thank you very much :-TU

i found more questions…
what should i mark in firewall “network security policy” on these application rules? windows updater?system?and svchost.exe? i marked them outgoing only, maybe there should be other rules?

[attachment deleted by admin]

Svchost.exe and System are both good to leave at outgoing only.
I never touch the windows updater I don’t wish to risk not getting the updates needed.
I haven’t had any issues with my configuration.

hey again, i was out of my living place and now i come back and i find that firewall is always blocking my utorrent program… but i did everything what was written in link few comments back… do you have any ideas what i should change again? :-\
thanks for help

[attachment deleted by admin]

Hi.

There are many variations on the rule sets for torrent clients, however, they all use the same ‘core’. You could simply allow TCP and UDP In and Out for everything, but if you want a little added security you can create the following rules. Just edit the entry for uTorrent in your firewall Network Security Policy and add the following.

Application Rules:

Action = Allow
Protocol = UDP
Direction = Out
Source Address = Any
Destination Address = Any
Source Port = Any
Destination Port = 53

Action = Allow
Protocol = TCP
Direction = Out
Source Address = Any
Destination Address = Any
Source port = Any
Destination port = 80

Protocol = TCP
Direction = Out
Source Address = Any
Destination Address = Any
Source Port = ANY - This may be tightened by using a Port Range 1024 - 5000
Destination Port = Any

Protocol = UDP
Direction = Out
Source Address = Any
Destination Address = Any
Source Port = ANY - This may be tightened by using a Port Range 1024 - 5000
Destination Port = Any

Action = Allow
Protocol = TCP
Direction = In
Source Address = Any
Destination Address = Any
Source Port = Any
Destination Port = [Your uTorrent Port]

Action = Allow
Protocol = UDP
Direction = In
Source Address = Any
Destination Address = Any
Source Port = Any
Destination Port = [Your uTorrent Port]

Depending on your situation, you may also need the following Application Rule:

Action = Allow
Protocol = UDP
Direction = Out
Source Address = Any
Destination Address = 239.255.255.250
Source Port = Any
Destination Port = 1900

If you have used the ‘Stealth Port Wizard’ you will need to allow uTorrent [In] access in Global Rules:

Action = Allow
Protocol = TCP or UDP
Direction = In
Source Address = Any
Destination Address = [Your uTorrent Port]
Source Port = ANY

You can also add the following ICMP rules, which may reduce the number of blocked entries in the log file after closing your torrent client

In Global Rules:

Action = Allow
Protocol = ICMP
Direction = In
Source Address = Any
Destination Address = Any
ICMP Type = Port Unreachable

Action = Allow
Protocol = ICMP
Direction = In
Source Address = Any
Destination Address = Any
ICMP Type = Host Unreachable

Action = Allow
Protocol = ICMP
Direction = In
Source Address = Any
Destination Address = Any
ICMP Type = Network Unreachable