Router-question + HTTPS-question.

Hello Comodo-users!

Since a couple of days I´ve installed and all seems pretty OK. I am nonsavvy enduser with standalone XP SP2 and have installed CPF out of the box.

  1. I intend to buy a router (probably D-Link). How do I, in the easiest manner, install the router with Comodo PF without getting any problems? Do I need to change any settings in Comodo - if so explain please as clearly as possible what settings.

What is important that I do in the router FW to set protection as good as is meant to be?

  1. How does Comodo protect against malware that uses HTTPS connections to get out? I am into deep waters here - but I have heard that some malware can use this to bypass some FW since they dont monitor HTTPS???

Edit; Why is my IP visible?

Thank you!

Installing and using the D-Link on the default settings shouldn’t be a problem and should work seamlessly. As for malware that uses Outbound port 443 HTTPS we’ll have to wait for the Comodo crew to read this and answer. I’ve never experienced this though…
But if you want to somewhat control it, make directional rules that covers HTTPS behaviour. Requirers some knowledge in how to set up rules in the Network Control Rules section, but after a few attempts you should be able to do this with ease. Just look at the other rules already there :slight_smile:

The router is an excellent investment and, as Triplejolt says, should work seamlessly with Comodo. The https connections can be easily controlled on a per remote host basis. In other words, don’t just create a rule for your browser such as: TCP, Out, Remote port= 443, Remote host=Any. Instead, you would have several as: TCP, Out, Remote port=443, Remote where the x’s are the ip addresses of the individual sites you trust.

Hi and welcome,

Your IP on the forums is only visible to you and moderators and admins on the forums. No one else can see it. If you view your post without logging in you will see you cannot see your IP.


I will add to the other replies.

[i]Do I need to change any settings in Comodo - if so explain please as clearly as possible what settings.[/i]
You have to set up a trusted zone in CPF if you are going to use a router. Go to security/tasks/wizards and "define a new trusted network". If you have any questions about that, you can just post here again. I have a Dlink (DGL4300) and it works great. Good luck!

My amateur presumption about a router FW for my standalone wire-connected PC, was something like this;

  • It would take a considerable malware attack load off the software FW.

  • It would stealth my ports just as well as any software FW.

  • It would enhance my protection against hackers.

  • Its a valuable protection contribution to overall safety.

So I went to buy one ie DLink 604 or the DGL4300 or whatever is good. The tech(?)guy started talking about “real” firewalls and said that a NAT-Router FW wouldnt stop much.

So could you help clear “the fog” for me a bit. The techguy in the shop seemed so company security oriented so I felt unsure if we were talking about the same thing.

What to expect and maybe one or two more alternatives with pros and cons?!

A hardware firewall or NAT component found in routers are very good at stopping unsolicited inbound communications attempts (ie. stuff you didn’t ask for). For instance, a web side scan like those of GRC & Sygates would bounce off your router & never get to the software firewall (like CPF). There are, of course, exceptions. Some routers have the IDENT port (113?) open or the TELNET port (22?). The TELNET port is often used to control the router. If there are any open ports then they can normally be stealthed from the routers settings. It is also important that you change the default password of the router.

However, one thing that a hardware firewall or a NAT router cannot control is outbound communications. You can block outbound ports, sure. Depending on the sophistication of the router, even redirect them. But, the router doesn’t know what is running on the PC. And this where your software firewall (like CPF) comes in. Every outbound packet is inspected. Only authorised packets reach the router.

Hope that helps.

I had a 604 before 4300 and it worked fine for me. Sometimes i had to unplug it and reconnect to get my internet connection back, but it was like every second month or so.
You should listen to Kail instead of that tech-guy…
The router stealths you and take care of a lot of things trying to get IN to your computer, and CPF takes care of the rest. ;D

I know its turning into a router thread more than a Comodo question - just a last question;

Is there any significant difference between the DLinks DIR-100 and the DI-604?

Thank you!

The main difference, is that DIR 100 has a built in cable/DSL modem, so if you need that, you should probably buy that one. I don’t know the price difference, but I’m sure you do.
604 has been around for a while, so the DIR100 is newer and it probably is better, but i really don’t know.

Thanks guys!

You’re welcome!
Just ask here in the forum, if you have any more questions, and we will try to answer them. ;D
Good luck!