This is an open invitation to all Comodo Firewall users, who want to share (with other users) their customized “rules” (not settings, but rules for the firewall).
In the old Forum, there were several posts from different users who shared their “rules” (there were even tutorials in several languages). It was very interesting and enriching because it allowed other users to customize their own “rules” using several alternatives as models. Unfortunately, almost all that stuff was lost, since today there is no more access to those old posts.
For example, everyone knows that SVCHOST is one of the executables, which depending on the user profile, can have different firewall rules. It would be very useful for everyone to have different examples of customized “rules” for SVCHOST.
The same with SYSTEM or other executables, depending on the needs of each user profile, some will be interested in examples of customized “rules” more focused on security, or privacy, or both.
In short, if you like customized Comodo Firewall “rules” (not settings), please share here your recommendations for “Application Rules”, “Global Rules”, “Rulesets”, “Portsets” etc.
Thank you EricCryptd. But the idea here is to focus only at “Comodo customized rules” exclusively for the firewall (not general settings). For example, today I saw your post showing your Global Rules. Please, feel free to share here your “Application Rules”, “Global Rules”, “Rulesets”, “Portsets” etc. Thank you!
Thanks EricCryptid! Today, at cis-2025, I saw an image of your customized Global Rules, it may be interesting for other users, so feel free to share here.
They’re the standard Proactive Config (Alert Incoming) global rules but after enabling IPv6 filtering, I run stealth wizard again so it creates the IPv6 rule. In truth, probably filtered by my router firewall but I like to have it enabled in any case.
Containment Level set to Restricted also as usual.
Rules for Proactive are Alert Incoming but you can change it to Stealth Porrts - Block Incoming as you have it if you prefer. Just the default for Proactive is to Alert Incomiing.
Hi,
Below is my very tight rule for svchost.exe and system… my gold rules
address 192.168.1.1 is the address of my router…
ATTENTION !!!
These settings do not take into account Windows updates and other required applications, e.g. Firefox, etc., but only the basic connection to the WAN network.
All other applications should be configured in their own way, depending on your needs and requirements
Cube76 thanks a lot for sharing!
If you think that it might be interesting for other users, no rush, but at any time please feel free to share the rest of your rules (“Application Rules”, “Global Rules”, “Rulesets”, “Portsets” etc).
I only have the Firewall installed, with “Proactive” + “Stealth Ports”. The image that I sent you in previous messages is what appears to me in “Global Rules” by default.
But CIS 2025 in “Proactive” may have another default (the one you showed). Or perhaps it depends on another setting.
Anyway, it doesn’t matter… mission accomplished! Your default and my default already appear here. Users have different configuration alternatives to choose from. Depending on the profile of each user, each one will choose what is best.
