Comodo Dome Firewall

• Introduction To Comodo Dome Firewall - Virtual Appliance
  • Install Dome Firewall And Login To The Administrative Console
• The Main Interface
• The Dashboard
• View And Modify System Status And General Configuration
  • Manage Admin Accounts
    • Add And Manage Administrators
    • Manage Administrative Roles
  • License Activation
  • SNMP Settings
  • Central Management
  • Configure SSH Access
  • High Availability
  • View And Update Firmware Version
  • Create And Schedule Backup Of DFW State
    • Manually Create A Backup
    • Schedule Backup Operations
    • Encrypt Backup Archives
    • Export A Backup
    • Import A Backup Archive From A Local Computer
    • Roll Back The Virtual Appliance To A Previous Time Point
    • Reset The Virtual Appliance To Factory Defaults
  • Shutdown Or Restart The Dome Firewall Virtual Appliance
• View DFW Virtual Appliance Status
  • System Status
  • Network Status
  • System Usage Summaries
  • Network Traffic
  • Network Connections
  • SSLVPN Connections
• Network Configuration
  • Configure Interface Devices, Uplinks And VLANs
    • Configure Interface Devices
    • Add And Manage Gateway Uplink Devices
    • Create VLANs
  • Routes
    • Add And Manage Static Routes
    • Add And Manage Policy Routing Rules
• Configure DFW Virtual Appliance Services And Protection Settings
  • DHCP Server
  • Advanced Threat Protection
    • Manage The ATP Profiles
    • Comodo Antivirus
  • Time Server
  • Intrusion Prevention
    • Configure Intrusion Prevention System
    • Manage IPS Rulesets
    • Manage Application Identification Rulesets
  • Configure Wireless Hotspot
    • Configure Captive Portal Service
    • Customize The Login Page
    • Add And Manage Permanent Users
  • Internet Content Adaptation Protocol
  • Quality Of Service
• Manage Firewall Configuration
  • Firewall Objects
    • Manage Firewall Address Objects
    • Manage Firewall Object Groups
    • Manage Firewall Schedules
    • Active Directory Integration
  • Destination Network Address Translation
  • Source Network Address Translation
  • Configure System Access
  • Configure Firewall Policy Rules
    • Manage Firewall Policy Rules
    • Manage VPN Firewall Rules
• Configure Proxy Services
  • HTTP/HTTPS Proxy Server
    • Configure URL And Content Filtering
    • HTTPS Proxy
• Configure Virtual Private Network Settings
  • SSL VPN Server
    • Configure General SSL VPN Server Settings
    • Manage SSL VPN Client Accounts
    • Configure Advanced SSL VPN Server Settings
    • Configure Clients To Connect To Dome Firewall
  • IPsec Configuration
  • Configure L2TP Server
  • Configure IPSec/L2TP Users
• View Logs
  • Realtime Logs
  • Configure Log Settings
  • Generate Reports
• Appendix - Minimum Requirements For Software Installations

Configure Intrusion Prevention System

• The IPS Settings interface allows you to configure ruleset updates for Snort.

• Ruleset updates can be scheduled to run automatically or run manually on demand.

• DFW supports custom Snort rules. You can create Snort rules for network intrusion detection/prevention and upload them to the firewall in the 'Intrusion Prevention System' interface.

• For more details on creating new custom rules, see http://manual.snort.org/node27.html.

• Click 'Services' > 'Intrusion Prevention' in the left-hand menu:

• Automatically fetch IPS rules - Select this checkbox for scheduled automatic Snort ruleset updates. Dome Firewall will download the ruleset database updates from the Snort servers and install them locally at the selected intervals. The interval can be chosen from 'Choose update schedule' drop-down, that appears on selecting this option. The available options are:

• Hourly

• Daily (Default)

• Weekly

• Monthly

• Update Ruleset Manually- To instantly update the ruleset database, click the 'Update rules now' button.

Custom IPS Rules

IPS rulesets containing custom rules can be created as per the network requirements by the administrator and can be uploaded to the DFW virtual appliance for implementation at any time. The constituent rules can be defined in a text file and stored as .rules file to form a rule set file. The  interface allows to upload  single ruleset file or tar.gz or zip  file containing several ruleset files.

To upload the custom ruleset file(s)

• Click 'Choose File' under 'Custom IPS Rules' and navigate to the location of the rules file and click 'Open'

• Click 'Upload custom rules'

• Click Save and Restart after completing the any configuration change
  

The Intrusion Prevention System service will restart for your changes to take effect.