Set up the Firewall For Maximum Security and Usability
Note – the firewall is already configured to provide total security. This section is only for advanced users who wish to tweak the settings even further.
Stealth
Ports
Port Stealthing is a security
feature whereby ports on an internet connected PC are hidden from
sight, sending no response to opportunistic port scans.
Click 'Tasks' > 'Firewall Tasks'
Click 'Stealth Ports'
Select 'Block Incoming Connections' to make computer's ports are invisible to all networks
Network Zones Settings
The
'Network Zones' settings allows you to configure connections for a
router/home network. (This is usually
done automatically for you).
View the configurations
-
Click 'Settings' on the CIS home screen
-
Click 'Firewall' > 'Network Zones'
-
Click the 'Network Zones' tab
4. Inspect the Loopback zone and Local Area Network #1 by clicking the '+' button beside the zone name.
- In most cases, the loopback zone IP address should be 127.0.01/255.0.0.0
5. Click 'OK'.
- In most cases, the IP address of the auto detected Network zone should be 10.nnn.nnn.nnn/255.255.255.0
Firewall Settings
The firewall settings option lets you configure the protection level for your internet connection, and the frequency of alerts generated.
Open firewall settings panel
-
Click 'Settings' at the top of the CIS home screen
-
Click 'Firewall Settings' > 'Firewall' on the left
-
Select 'Enable Firewall' and choose 'Safe mode' from the drop-down
Safe Mode: While filtering network traffic, the firewall will automatically create rules that allow all traffic for the components of applications certified as 'Safe' by Comodo. For non-certified new applications, you will receive an alert whenever that application attempts to access the network. Should you choose, you can grant that application Internet access by choosing 'Treat this application as a Trusted Application' at the alert. This will deploy the predefined firewall policy 'Trusted Application' onto the application.
Alert Settings
Under 'Alert Settings' in the same interface:
- Deselect 'Do not show pop-up alerts'
- Select 'Set alert frequency level' option and choose 'Low' from the drop-down. At the 'Low' setting, the firewall shows alerts for outgoing and incoming connection requests for an application. This is the setting recommended by Comodo and is suitable for the majority of users.
Advanced Settings
When launching a denial of service or 'flood' attack, an attacker bombards a target machine with so many connection requests that your computer is unable to accept legitimate connections, effectively shutting down your web, email, FTP or VPN server. To protect from such attacks ensure that the following settings are enabled 'Advanced' in the 'Firewall Settings' interface:
- Select 'Filter loopback traffic'
- 'Block fragmented IP traffic'
- 'Do Protocol Analysis'
- 'Enable anti-ARP'
Set-up Application Rules, Global Rules and Predefined Firewall Rulesets
You can configure and deploy traffic filtering rules and policies on an application-specific and global basis.
View application rules
- Click 'Settings' on the CIS home screen
- Click 'Firewall' > 'Application Rules'
- Use this interface to add, edit, enable/disable or remove internet connection rules for specific applications.
- See Application Rules if you need guidance on this
View global rules
- Click 'Settings' on the CIS home screen
- Click 'Firewall' > 'Global Rules'
- Use this interface to add, edit, enable/disable or remove global rules which apply to all traffic
-
See Global Rules if you need guidance on this
View predefined firewall rulesets
- Click 'Settings' on the CIS home screen
- Click 'Firewall' > 'Rulesets'
- Use this interface to add, edit, enable/disable or remove rulesets
-
See Firewall Rule sets if you need guidance on thisю