Comodo Internet Security

• Introduction To Comodo Internet Security
  • Special Features
  • System Requirements
  • Installation
    • CIS Premium – Installation
    • CIS Pro - Installation And Activation
    • CIS Complete - Installation And Activation
    • Activating CIS Pro/Complete Services After Installation
      • Activating Your License
      • Activating Your Guarantee Coverage
      • Renewal Or Upgrading Your License
  • Starting Comodo Internet Security
  • The Main Interface
    • The Home Screen
    • The Tasks Interface
    • The Widget
    • The System Tray Icon
  • Understanding Security Alerts
• General Tasks – Introduction
  • Scan And Clean Your Computer
    • Run A Quick Scan
    • Run A Full Computer Scan
    • Run A Rating Scan
    • Run A Custom Scan
      • Scan A Folder
      • Scan A File
      • Create, Schedule And Run A Custom Scan
  • Instantly Scan Files And Folders
  • Processing Infected Files
  • Manage Virus Database And Program Updates
  • Manage Quarantined Items
  • View CIS Logs
    • Antivirus Logs
      • Filtering Antivirus Logs
    • Firewall Logs
      • Filtering Firewall Logs
    • Defense+ Logs
      • Filtering Defense+ Logs
    • Alerts Logs
      • Filtering Alerts Displayed Logs
    • Tasks
      • Filtering Tasks Launched Logs
    • Configuration Changes
      • Filtering Configuration Changes Logs
  • Manage CIS Tasks
  • View Active Internet Connections
  • View Active Process List
• Firewall Tasks – Introduction
  • Allow Or Block Internet Access To Applications Selectively
  • Stealth Your Computer Ports
  • Manage Network Connections
  • Stop All Network Activities
  • Advanced Firewall Settings
• Sandbox Tasks – Introduction
  • The Virtual Kiosk
    • Starting The Virtual Kiosk
    • The Main Interface
    • Running Browsers Inside The Virtual Kiosk
    • Opening Files And Running Applications Inside The Virtual Kiosk
    • Configuring The Virtual Kiosk
    • Closing The Virtual Kiosk
  • Run An Application In The Sandbox
  • Reset The Sandbox
• Advanced Tasks – Introduction
  • Create A Rescue Disk
    • Downloading And Burning Comodo Rescue Disk
  • Remove Deeply Hidden Malware
  • Submit Files
  • Identify And Kill Unsafe Running Processes
• Advanced Settings
  • General Settings
    • Customize User Interface
    • Configure Program And Virus Database Updates
    • Log Settings
    • Manage CIS Configurations
      • Comodo Preset Configurations
      • Importing/Exporting And Managing Personal Configurations
  • Security Settings
    • Antivirus Settings
      • Real-time Scanner Settings
      • Scan Profiles
      • Exclusions
    • Defense+ Settings
      • HIPS Behaviour Settings
      • Active HIPS Rules
      • HIPS Rule Sets
      • Protected Objects
        • Protected Files
        • Blocked Files
        • Protected Registry Keys
        • Protected COM Interfaces
      • Behavior Blocker
        • The Sandbox - An Overview
          • Unknown Files - The Auto - Sandboxing And Scanning Processes
      • Configure The Sandbox
    • Firewall Settings
      • Firewall Behavior Settings
      • Application Rules
      • Global Rules
      • Firewall Rule Sets
      • Network Zones
        • Network Zones
        • Blocked Zones
      • Port Sets
    • Manage File Rating
      • File Rating Settings
      • Trusted Files
      • Unrecognized Files
      • Submitted Files
      • Trusted Vendors List
• Comodo GeekBuddy
  • Overview Of Services
  • Activation Of Service
  • Launching The Client And Using The Service
  • Accepting Remote Desktop Requests
  • Chat History
  • Using Issue Tracker
  • Uninstalling Comodo GeekBuddy
• TrustConnect Overview
• Comodo Dragon
• Comodo BackUp
• Appendix 1 CIS How To... Tutorials
  • Enabling / Disabling Security Components Easily
  • Setting Up The Firewall For Maximum Security And Usability
  • Blocking Internet Access While Allowing Local Area Network (LAN) Access
  • Setting Up The HIPS For Maximum Security And Usability
  • Setting Up The Behavior Blocker For Maximum Security And Usability
  • Password Protect Your CIS Settings
  • Reset Forgotten Password (Advanced)
  • Running An Instant Antivirus Scan On Selected Items
  • Creating An Antivirus Scanning Schedule
  • Running Untrusted Programs Inside Sandbox
  • Running Browsers Inside Sandbox
  • Running Untrusted Programs Inside Virtual Kiosk
  • Running Browsers Inside The Virtual Kiosk
  • Restoring Incorrectly Quarantined Item(s)
  • Submitting Quarantined Items To Comodo For Analysis
  • Enabling File Sharing Applications Like BitTorrent And Emule
  • Blocking Any Downloads Of A Specific File Type
  • Disabling Behavior Blocker And Auto-Sandboxing On A Per-application Basis
  • Switching Between Complete CIS Suite And Individual Components (just AV Or FW)
  • Switch Off Automatic Antivirus And Software Updates
  • Suppressing CIS Alerts Temporarily While Playing Games
  • Renewing Your License
• Appendix 2 - Comodo Secure DNS Service
  • Router - Manually Enabling Or Disabling Comodo Secure DNS Service
  • Windows XP - Manually Enabling Or Disabling Comodo Secure DNS Service
  • Windows 7 / Vista - Manually Enabling Or Disabling Comodo Secure DNS Service
• Appendix 3 - Glossary Of Terms
• About Comodo Security Solutions

Setting up the Firewall For Maximum Security and Usability

 

This page outlines the functions of Comodo's Firewal  and helps you to set up a secure connection to the Internet.

Stealth Ports Settings

Port Stealthing is a security feature whereby ports on an Internet connected PC are hidden from sight, sending no response to opportunistic port scans.

1. Open 'Tasks' interface by clicking the green curved arrow at top right of the 'Home' screen

2. Open 'Firewall Tasks' by clicking 'Firewall Tasks' from the Tasks interface

3. Open Stealth Ports interface by clicking the 'Stealth Ports' icon  from the Firewall Tasks panel

4. Select 'Block Incoming Connections' to make computer's ports are invisible to all networks

Click here for more details on Stealthing your Computer Ports

 

Network Zones Settings

 

The 'Network Zones' settings allow you to configure the protection level for network connection to a Router/home network. (This is usually done automatically for you).

 

To view the configurations

1. Open 'Tasks' interface by clicking the green curved arrow at top right of the 'Home' screen

2. Open 'Firewall Tasks' by clicking 'Firewall Tasks' from the Tasks interface and click 'Open Advanced Settings'.

3. Click 'Network Zones' under Firewall from the left hand side pane

4. Click 'Network Zones' tab from the 'Network Zones' interface

Check the Loopback zone and Local Area Network #1. In most cases, the loopback zone IP address should be 127.0.01/255.0.0.0

In most cases, the IP address of the auto detected Network zone should be 192.168.1.100/255.255.255.0 .

5. Check these addressees and click 'OK'.

Click here for more details on Network Zones settings

 

Firewall Behavior Settings

The Firewall Behavior Settings option allows you to configure the protection level for your Internet connection and the frequency of alerts generated.

 

To open Firewall Behavior Settings panel

1. Open 'Tasks' interface by clicking the green curved arrow at top right of the 'Home' screen

2. Open 'Firewall Tasks' by clicking 'Firewall Tasks' from the Tasks interface and click 'Open Advanced Settings'.

3. Click 'Firewall Settings' under Firewall from the left hand side pane

4. Ensure that 'Enable Firewall' is selected and choose Safe mode from the drop-down beside it.

Safe Mode: While filtering network traffic, the firewall will automatically create rules that allow all traffic for the components of applications certified as 'Safe' by Comodo. For non-certified new applications, you will receive an alert whenever that application attempts to access the network. Should you choose, you can grant that application Internet access by choosing 'Treat this application as a Trusted Application' at the alert. This will deploy the predefined firewall policy 'Trusted Application' onto the application.

 

Alert Settings

 

Under 'Alert Settings' in the same interface:

• Deselect Do NOT show popup alerts

• Select 'Set alert frequency level' option and choose 'Low' from the drop-down. At the 'Low' setting, the firewall shows alerts for outgoing and incoming connection requests for an application. This is the setting recommended by Comodo and is suitable for the majority of users.

Advanced Settings

 

When launching a denial of service or 'flood' attack, an attacker bombards a target machine with so many connection requests that your computer is unable to accept legitimate connections, effectively shutting down your web, email, FTP or VPN server. To protect from such attacks, make the following settings under 'Advanced' in the 'Firewall Settings' interface:

• Select Filter loopback traffic

• Ensure that the Block fragmented IP traffic is selected

• Block fragmented IP traffic - When a connection is opened between two computers, they must agree on a Maximum Transmission Unit (MTU). IP Datagram fragmentation occurs when data passes through a router with an MTU less than the MTU you are using i.e when a datagram is larger than the MTU of the network over which it must be sent, it is divided into smaller 'fragments' which are each sent separately. Fragmented IP packets can create threats similar to a DOS attack. Moreover, these fragmentations can double the amount of time it takes to send a single packet and slow down your download time.

• Select the Do Protocol Analysis checkbox to detect fake packets used in denial of service attacks

• Select Enable anti-ARP spoofing

5. Click 'OK' for your settings to take effect.

Click here for more details on Firewall Behavior Settings

Setting-up Application Rules, Global Rules and Predefined Firewall Rulesets

You can configure and deploy traffic filtering rules and policies on an application specific and global basis and predefined firewall rulesets.

 

To view the Application Rules

1. Open 'Tasks' interface by clicking the green curved arrow at top right of the 'Home' screen

2. Open 'Firewall Tasks' by clicking 'Firewall Tasks' from the Tasks interface and click 'Open Advanced Settings'.

3. Click 'Application Rules' under Firewall from the left hand side pane

4. Click the handle from the bottom and Add or Edit rules for specific applications manually or remove them.

Click here for more details on Application Rules

 

To view the Global Rules

1. Open 'Tasks' interface by clicking the green curved arrow at top right of the 'Home' screen

2. Open 'Firewall Tasks' by clicking 'Firewall Tasks' from the Tasks interface and click 'Open Advanced Settings'.

3. Click 'Global Rules' under Firewall from the left hand side pane

4. Click the handle from the bottom and Add or Edit global rules manually or remove them.

Click here for more details on Global Rules

 

To view Predefined Firewall rulesets

1. Open 'Tasks' interface by clicking the green curved arrow at top right of the 'Home' screen

2. Open 'Firewall Tasks' by clicking 'Firewall Tasks' from the Tasks interface and click 'Open Advanced Settings'.

3. Click 'Rulesets' under Firewall from the left hand side pane

4. Click the handle from the bottom to and Add, Edit or remove rulesets.

You need not make your own rulesets, the defaults are usually enough.

 

Click here for more details on pre-defined firewall rulesets