- If you want to read throught my process of discovery (including my misconceptions)… continue reading this thread from this first post.
- Or, jump to end result which was the cretion of a How To - Understanding & Creating Network Control Rules properly in another thread [url]https://forums.comodo.com/index.php/topic,1125.0.html[/url]
And now I start my quest for understanding…
I’ve been looking at the Network Rules created by the Wizards, and the rule I added to support bittorent communication.
Bouncing between the Rules and reading the Description at the bottom, doesn’t seem to vibe (in my mind). So the issue is either my understanding, or the presentation of the “english” description.
Probably the first issue is understanding Source/Remote as they relate to In/Out -bound communication… is it correct to say:
On an Inbound Rule, SOURCE is the “external”/FROM PC/range trying to communicate with my PC/range
On an Inbound Rule, REMOTE is the “destination”/TO PC/range communication is allowed to
On an Outbound Rule, SOURCE is the “destination”/TO PC/range communication is allowed to
On an Outbound Rule, REMOTE is the “external”/FROM PC/range trying to communicate with my PC/range
If the above is correct, then the Description needs to “flip” its To/From just as the external/destination flipped between in/out above.
Example 1: (OutBound)
Permission: Allow, Protocol: IP Out, Source: Any, Remote: ZONE [Home Network], Criteria: Any
Description: ALLOW IP OUT FROM IP [Any] TO IP ZONE: [Home Network] WHERE IPROTO IS ANY ← looks good
Example 2: (InBound)
Permission: Allow, Protocol: IP In, Source: ZONE [Home Network], Remote: Any, Criteria: Any
Description: ALLOW IP IN FROM IP ZONE [Home Network] TO IP [Any] WHERE IPROTO IS ANY ← looks wrong
shouldn’t it say…
Description: ALLOW IP IN TO IP ZONE [Home Network] FROM IP [Any] WHERE IPROTO IS ANY
… knowledge is power (over one’s security)!
P.S. I should indicate that my observations were made with CPF BETA 220.127.116.11.