COMODO Firewall tutorial

[GoldBeachBiker]

Great Tutorial with LOADS of tips!

Thanks, LunarWolf. You're the man!

George

[sul2005tan]

great tutorial thank you very much I will try this

[reinwald]

hi!

is there any articles or review about Comodo with Defense+? Is it effective in stopping virus, malware, etc? I've been hearing its an HIPS?

[Rekhyt]

thank you lunar. i just started using this firewall... seems good so far

[LunarWolf]

hi!

is there any articles or review about Comodo with Defense+? Is it effective in stopping virus, malware, etc? I've been hearing its an HIPS?

Defense + is the backbone of Comodo. It is the teeth and claws of Comodo. It is a very powerful HIPS as everything which tries to install or run have to go through Defense + first. So yeah it can stop virus, malware when you try to execute them.

Without Defense +,
http://malwareresearchgroup.com/foru...?f=20&t=47#p50

With Defense + turn on,
http://malwareresearchgroup.com/foru...?f=20&t=47#p68

Watch this.
http://www.youtube.com/watch?v=jDBjs...e=channel_page
for more details.

Of course with all security stuff, common sense is the key. There is no point if the user in front of the screen click allow for all application as even if presented with the world's best defenses, he/she will still execute the malware.

Comodo is for those who like their security application to prompt them for action aka the user decide. If you don't like a prompt for response type of software, Comodo is not for you.

I peersonally like comodo for the following reasons :
1. Strong and solid firewall and HIPS with no compromise
2. I like my things to ask me what to do.
3. Comodo is very light. When I say very light, I mean very light as it takes like ~ 5MB of RAM while running in the system tray.

With Comodo, there is no compromise. When you block something, it really get block. I once block my Windows Live Messenger for fun and I couldn't sign in at all! So just be careful if you want to use it.

You can set parent control for it. This way, all unknown stuff will automatically be block excepted for trusted application. This is useful if you don't like it to prompt you. I prefer it to prompt me so I didn't set my settings that way.

Hope that helps. Any questions please feel free to ask.

[reinwald]

WOW! Comodo with Defense+ sounds very promising! Will definitely try it out after my license of KIS expires.. uhm.. on the average use of the computer.. are the alerts from comodo...frequent? I mean.. because it is a HIPS.. do you have to always accept an alert to launch a program?

Finally installed comodo firewall!

Just a few questions

1.In making all ports stealth

I followed your direction in "Block All Incoming connections" ..but whenever i click "Finish" and click again at Stealth Ports Wizard, i notice it just returns to "Define a new trusted network stealth".. did i do something wrong?

2. I tried the website you suggest https://www.grc.com/x/ne.dll?bh0bkyd2 and did one of their test..namely the ShieldUP! and here is the results

GRC Port Authority Report created on UTC: 2009-08-10 at 15:56:51

Results from scan of ports: 0-1055

0 Ports Open
1055 Ports Closed
1 Ports Stealth
---------------------
1056 Ports Tested

NO PORTS were found to be OPEN.

The port found to be STEALTH was: 554

Other than what is listed above, all ports are CLOSED.

TruStealth: FAILED - NOT all tested ports were STEALTH,
- NO unsolicited packets were received,
- A PING REPLY (ICMP Echo) WAS RECEIVED.

...my question is if this is normal? and any comment about TruStealth? how come i failed?

[LunarWolf]

Is normal. It will go back to "Define a new trusted network stealth". I guess is a bug they haven't fix.

But your results are weird. Mine is always all ports stealth. Never the less, the ports which are close or stealth by Comodo is safe. Nothing to worry about. How come you fail, I have no idea. Nut nothing to worry about.

Depends. If you make them "remember my decision", then the alerts will become lesser and lesser. If you installing some stuff you trust like an antivirus, turn off Defense+ and firewall for the time being or you will be bombard with lots of alerts as Defense + monitors the registry. So if something is trying to modify the registry, it will alert you. Just turn it off when you install stuff and turn it back on when you done installing.

If you select Proactive Defenses when you right click on the icon, get ready for lots of alerts. If you use the default Firewall mode, the alerts are bearable...

Make sure you didn't install the AV as it sucks. Don't install the toolbar as well. Use Avira free for the AV. Should be sufficient.

[reinwald]

Yeah i was also planning to install aviva for on demand scan.. i would like to really secure my protection! really unsure about the results..but i'm definite that i followed all your direction.. is there other test on the net to test the strength of my firewall?

[LunarWolf]

http://www.pcflank.com/

Just to let you know, Comodo ace all that test on my laptop. Except for the privacy of browser one...

[ceyfer]

Yeah i was also planning to install aviva for on demand scan.. i would like to really secure my protection! really unsure about the results..but i'm definite that i followed all your direction.. is there other test on the net to test the strength of my firewall?

what kind of test Leak test/ HIPS ?

I think there's no need for a firewall leak test by just configuring your firewall setting it would solve anything.