Problem with streaming music/video [Resolved]

SilverBlade · May 14, 2006, 1:47pm

First of all, congratulations to the Comodo team for making my all time favourite firewall, ever. I used to use Sygate Persoal Firewall, but doesn’t get updated anymore, and all the others, to me, are confusing, have ■■■■ GUI ect. Comodo manages to be an extremely advanced and powerful firewall, with a delightful GUI showing lost of info, while still keeping it relatively simple to figure out. Truly well done. That it’s free is just… amazing.

However, I have a specific problem that perhaps is due to my limited knowledge. Me and my friend are having our PC’s hooked up to eachother using a LAN connection via a crossover cable, his internet connection is through my PC. I used the “add trusted zone” guide to establish a connection and it was a breeze. We use the “Videolan” app to stream video and audio from his PC to mine, since my PC is the one connected to my hifi/television. He can then just start up any video/audio from his own PC, and still be able to hear it from my speakers or see it on my TV. Videolan use the UDP protocol to stream the data. Now comes the problem: My Comodo firewall sees his videostream as an “UDP Flood” attack, going into emergency mode and shuts off his connection. I’ve seemingly tried everyting, add network, add zone, UDP in/out ect… however nothing works. The only way I can get it to work is to either shut the firewall off (obviously), or generally set the UDP flood limit to around 200 under “advanced”.

I think it’s kind of annoying that I cannot set his “zone” to have full access, and that the UDP flood setting, which implys to all connections, seemingly have a higher priority than my manual settings.

Also, by messing with all of this, I’ve seen that whenever I choose “add zone”, lets call it “friend” I seemingly cannot “see” the rule anywhere, ie I cannot delete the rule. I’ve noticed whenever I then select “add network rule”, “friend” is then listed to select. Is that because that’s really how you do it, first select “add zone” and then “add network rule” and select it?

But, as I said, perhaps it’s just me that doesn’t know how to. In that case, please help.

Did I forget to mention that I just love your firewall?

Best Wishes

egemen · May 14, 2006, 3:23pm

SilverBlade post:1:

However, I have a specific problem that perhaps is due to my limited knowledge. Me and my friend are having our PC’s hooked up to eachother using a LAN connection via a crossover cable, his internet connection is through my PC. I used the “add trusted zone” guide to establish a connection and it was a breeze. We use the “Videolan” app to stream video and audio from his PC to mine, since my PC is the one connected to my hifi/television. He can then just start up any video/audio from his own PC, and still be able to hear it from my speakers or see it on my TV. Videolan use the UDP protocol to stream the data. Now comes the problem: My Comodo firewall sees his videostream as an “UDP Flood” attack, going into emergency mode and shuts off his connection. I’ve seemingly tried everyting, add network, add zone, UDP in/out ect… however nothing works. The only way I can get it to work is to either shut the firewall off (obviously), or generally set the UDP flood limit to around 200 under “advanced”.

I think it’s kind of annoying that I cannot set his “zone” to have full access, and that the UDP flood setting, which implys to all connections, seemingly have a higher priority than my manual settings.

Actually, you have found the solution by yourself:)Congratulations. All you need to do is to modify UDP flood parameters according to your network characteristics.

DOS/DDOS defense logic always has a priority over the rules, because these attacks are usually of killer type. They can come either from your trusted zone or from the Internet. if one of the computers in your trusted network is infected by a DOS agent(which is a very common case), your PC should still remain DOS/DDOS resistant.

Also, by messing with all of this, I've seen that whenever I choose "add zone", lets call it "friend" I seemingly cannot "see" the rule anywhere, ie I cannot delete the rule. I've noticed whenever I then select "add network rule", "friend" is then listed to select. Is that because that's really how you do it, first select "add zone" and then "add network rule" and select it?

Yes you are right. Current GUI does not allow you to Edit/Remove the zones you defined. It will be updated soon.

Hope this helps,

Egemen

SilverBlade · May 17, 2006, 7:32am

Ok, thanx for explaining that regarding the UDP flood.

Yes you are right. Current GUI does not allow you to Edit/Remove the zones you defined. It will be updated soon

Ok, but if the “add zone” function works by itself, what is the point in being able to select it as a self made/named zone under “add network rule”? I mean, what is the difference between:

Selecting “Add zone”, name it “friend”, select parameters, hit ok and then nothing.
Do all of the above, but after that choose “add network rule” and select “friend”.

Also, in the next upgrade, I think it would be nice if you made it easier on the eyes to see which applications are allowed/blocked ect.

egemen · May 17, 2006, 12:21pm

Hi,
In step 1, you are creating a new Zone definiton. Thats it. No rule is being created unless you create a network rule explicitly or you use Add a new trusted zone wizard. Zones are just aliases for your ease of use.

Filtering is all about the rules you create.

Feel free to ask anything if you need more help.

Egemen

SilverBlade · May 18, 2006, 3:55pm

Ok, now I get it. It seems so obvious ofcourse when you know, but, I guess that can be said about most things.