Xthink,I agree with you ![:slight_smile: :slight_smile:](https://forums.comodo.com/images/emoji/twitter/slight_smile.png?v=12)
About A.
3 & 4 it is from legal “spyware” from Microsoft. So it is up to you.
If you don’t want to get an automatic updates, you can even delete them from the system. It is even better, then lose on system performance by blocking with firewall ![:slight_smile: :slight_smile:](https://forums.comodo.com/images/emoji/twitter/slight_smile.png?v=12)
About number 5- it is belongs to printer. As far i can see, you have some interesting situation, so in your case allow it. Otherwise, i am afraid, you will unable to print.
About Explorer- it is Microsoft file manager, block it. You have a browser, why do you need a Microsoft file manager that going to internet ?
Personally, i did block Internet explorer too, but it is up to you. (I (:LOV) Portable Firefox )
About No 1, the System- it is more complicated.It depends on your system and your needs.For example, i don’t use automatic update, and even dhcp i don’t need.
So i did allow for svchost.exe just a DNS. At least, nothing more for correct internet connection in my system. You can try this too.
I will tell you what i did, perhaps it will help you too.
Go to settings for rules - go to system, delete the default “allowing all” rule.
Do create :
rule#1
allow to UDP, destination: out, a Single port port: 53
Here the pic:
http://img2.pict.com/4a/9b/6d/1424375/0/300/control2520system.png
Of cause, you can be more accurate and choose only specific range of IP’s, it is up to you.Even without a specific range, it is more secure then default “allow all”.
Remember to apply.
rule#2
Block all rule (block all ip for in/out, any source, any destination)
Make sure, to put it in the second order, in the bottom. 88)
Then, please go to" network defense" and choose “Training mode”.
Disconnect from internet. Close your internet browser. Reconnect to internet, open your internet browser.
Comodo will ask you (at least it did asked me
) to create DNS allow rule for svchost.exe. So, allow it.The rule will be created for svchost.exe, Please go there and add second rule :
Block all rule (block all ip for in/out, any source, any destination)
Make sure, to put it in the second order, in the bottom. 88)
Then, you can change “Training mode” to “custom mode”, or " safe mode"(whatever do you prefer)
Remember to apply.
That is it.
If internet or something else won’t work, allow all as it was by default.
Let us know, if it is working for you or dosen’t.
About B- i don’t have an answer… Perhaps, you should better to ask a good admin in your samba network, that using Comodo too
Give him at least 2 litter of good ■■■■,i believe he will appreciate it ;D
P.S.Sorry for my English, your corrections are welcome by PM.