https://forums.comodo.com/cfp_beta_corner/announcement_comodo_firewall_pro_3011246_rc1_released-t14496.0.html

* You may have to sign in to view this forum link.

Damm that was fast. Also you stole my job. This means war :lurking: .

-{ Quote: "Hi Guys,

I would like to announce the availability of COMODO Firewall Pro 3.0.11.246 RC1.

What's New ?
-----------------

- This release is mostly about the fixes for the small bugs reported by our beta testers.
- Some stability issues are resolved

Known Issues
------------------

- In some PC configurations, Defense+ may report partial functionality error
- DoS detection is not active yet
- Predefined rulesets(Firewall and Defense+) are not final yet
" }-

just downloaded comodo & like the previous Betas running smooth as hell,CPU low even with defense on , simply the best firewall on the market.

Running pretty smooth here. Only the AKLT DirectX test is not passed and DoS isn't yet implemented.

What is going on with the RAM usage? Earlier builds were so lean. Now it is using almost 40meg on my PC, with Defense+ off.

Also, even though I asked that it only install only the basic firewall, it installed and enable defense +.

I got only 9k on my pc I had a bad time with the older version 2.4 that used to freeze my pc but the 3.0 so far is realy good , something you can try I read at Comodo forum is to delete your logs,see if that will help any.

-{ Quote: "What is going on with the RAM usage? Earlier builds were so lean. Now it is using almost 40meg on my PC, with Defense+ off.

Also, even though I asked that it only install only the basic firewall, it installed and enable defense +." }-
Lighter than a feather for me.

One thing I did notice in comodo is the memory goes up & down for what ever reason but the highest I got was 14k

Hi Coolio10!

An OT! the screenshot is very nice. Did u use snagit?

Thanks

Are those none finals only downloadable for registered users?

Task manager memory usage is not correct. Run your machine with and without Comodo (or anything) and compare the commit charge before and after the thing is booted and sits for about 10 minutes. You will be amazed.

-{ Quote: "Are those none finals only downloadable for registered users?" }-
Well, the links for the betas, RC are posted on the Beta forum of Comodo's forums. You should be registered to access them, but it's a piece of cake to register.

About RAM usage cpf and cmdagent are using less then 15 K here. Pretty nice.

you can download the file from freewarefiles they have it listed, seen it yesterday.

-{ Quote: "Hi Coolio10!

An OT! the screenshot is very nice. Did u use snagit?

Thanks" }-
Yup :D.

-{ Quote: "Task manager memory usage is not correct. " }-


I have been usage the latest version of Process Explorer, and watching the "Working Set". Is that an accurate tool?

-{ Quote: "I have been usage the latest version of Process Explorer, and watching the "Working Set". Is that an accurate tool?" }-

Yep. You can also select "peak working set size" from the columns menu.

Anytime I check this latest release is never below 15meg. While that is not bad, it is not as small as earlier builds of version 3 were.

-{ Quote: "Anytime I check this latest release is never below 15meg. While that is not bad, it is not as small as earlier builds of version 3 were." }-

Yep. Seems that anything after version 3.0.9 added more annoying bugs like the 120 DPI issue.

I don't want to come off an anti-comodo. They are doing some interesting things with the new firewall, and I think it will be a nice product. It is just moving in a direction that does not fit my wants or needs. I prefer a light, simple to use firewall, since I am already behind a router. I do not like the added defense+, and I wish they just had block or allow pop-up. I do not like constantly having to check if the program is a web browser, trusted app, etc... That is great for people that want to spend a lot of time configuring their machine. But for my of my friends and family, I have to install something more basic.

Hey Clocks,

When you first install the product it will ask you if you want just the basic firewall like version 2.4 or with the hips (Defense+). I believe it offers several security options from the paranoid to the casual surfer. Comodo can approve the 'safe' programs for you so you won't have to click a million pop-ups.


If you want something basic just use the Windows firewall and use Prevx for security. You won't have to pay for Prevx until it finds something nasty and you can keep it for 30 days after that. Just use the ABC mode in Prevx.

I have installed the latest RC build twice, both times selecting only the "basic firewall". Yet when I right click the icon in the system tray, it says defense+ is running. I have to manually disable it. Maybe a bug?

-{ Quote: "Damm that was fast. Also you stole my job. This means war ." }-;D lol
-{ Quote: "Running pretty smooth here. Only the AKLT DirectX test is not passed and DoS isn't yet implemented." }- that knows everyone already since the beta
-{ Quote: "I don't want to come off an anti-comodo. They are doing some interesting things with the new firewall, and I think it will be a nice product. It is just moving in a direction that does not fit my wants or needs. I prefer a light, simple to use firewall, since I am already behind a router. I do not like the added defense+, and I wish they just had block or allow pop-up. I do not like constantly having to check if the program is a web browser, trusted app, etc... That is great for people that want to spend a lot of time configuring their machine. But for my of my friends and family, I have to install something more basic." }- Understand you, I am also sceptical, appinit injection is very vulnerable and not state of the art. And does that look confident?:
CMDAGENT.EXE:1252 UDP 0.0.0.0:1025 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1042 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1493 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1494 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1495 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1496 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1497 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1498 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1499 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1500 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1501 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1502 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1503 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1504 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1505 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1506 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1507 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1508 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1509 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1510 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1511 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1512 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1513 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1514 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1515 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1516 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1517 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1518 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1519 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1520 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1521 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1522 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1523 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1524 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1525 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1526 *:*
CMDAGENT.EXE:1252 UDP 0.0.0.0:1527 *:*

Looks like fully backdoored, but lets hope that it is bug, I don´t see any sense of these cmdagent activities.

Also, I realize this is not a final build and all, but when does it continually asked me about boclean? They are from the same company! I can not believe they have not built that into the safe list yet. I check "trusted app" and the save choice box, but I still get the boclean pop-up about 4 times after an install of this RC. weird.

I discovered several issues, once after reboot the firewall controller was suddenly disabled, I noticed only several minutes later, so something must have manipulated this, so to rise my security status I created a password but this is annoying.. for each step I have to enter a pass just because of these critical issues.

You will have to go to the Comodo forum and ask someone from there. Like most beta or candidate programs expect some bugs. Comodo 2.4 still works if you need a basic firewall.

-{ Quote: "Comodo 2.4 still works if you need a basic firewall." }-
2.4 also has issues, if you block individual dlls sometimes internet access is no more possible, secondary I guess most prefer design of Comodo 3 so no one wants to step back, understand?

I can't wait when they get a help guide out and iron out some of the bugs. I'm so tired of the olive green colors of the GUI!

I like the new colors! The old version had a nice look also.

I hope they come up with different colors just like Zonealarm. I was curious on what to do with the pending files with the Proactive Defense? I have like 300 something files ready for review.

-{ Quote: "I'm so tired of the olive green colors of the GUI!" }-
Looool
-{ Quote: "I like the new colors! The old version had a nice look also." }-
Agree
-{ Quote: "I hope they come up with different colors just like Zonealarm" }-
Agree too! ;D

Perhaps its because 3.0 is beta, but I like 2.4 better for its simplicity. I really think it is destined to be a classic like Kerio 2.15 with many users long after 3.0 goes final.

If you are concerned about high security then Online Armor Free is a good alternative too especially if you use a good anti-keylogger in combination, then its better as Comodo.

-{ Quote: "If you are concerned about high security then Online Armor Free is a good alternative too especially if you use a good anti-keylogger in combination, then its better as Comodo." }-

How much RAM does it use? My PC will not boot into Windows after installing the latest release. ALso,on earlier build it would strangle my bandwidth while file sharing.

-{ Quote: "Perhaps its because 3.0 is beta, but I like 2.4 better for its simplicity. I really think it is destined to be a classic like Kerio 2.15 with many users long after 3.0 goes final." }-

I do think 3.0 is uneccessarily complex-even if they have the knowledge,should imagine a lot of people just wont have the patience to fiddle around,unless they regard it as a hobby.

For me this has been by far the worst for popups-virtually unusable-17 to install an app. and over 50(I stopped counting) to uninstall.

Yes- I was on the default settings>:(

-{ Quote: "I do think 3.0 is uneccessarily complex-even if they have the knowledge,should imagine a lot of people just wont have the patience to fiddle around,unless they regard it as a hobby.

For me this has been by far the worst for popups-virtually unusable-17 to install an app. and over 50(I stopped counting) to uninstall.

Yes- I was on the default settings>:(" }-

The highest arent the default. Also there is an installation mode for a reason.

You can use the installation mode to uninstall your programs. Maybe the final release will have that setting too!

Thanks for the tip;D

So to decrease paranoia it was probably false positive related to online armor according to Mike.

Hi,
I used comodo 2.4 now I installed v3 but .... I seems to me if I can no longer control which app is allowed/ask/blocked ? Where can I prevent a certain app to connect to Internet ???? I have adobe acrobat running, let it search for updates and ... nothing is asked by comodo if it is OK or not ....:(

probably you have it in training mode... so basically it learns all actions.


I can't get file sharing to work without taking down the firewall or putting it in "installation mode" which pretty much sucks.

-{ Quote: "probably you have it in training mode... so basically it learns all actions.


I can't get file sharing to work without taking down the firewall or putting it in "installation mode" which pretty much sucks." }-

.....this is normal. Its called "security". If a firewall let incoming connections in by default you could be hacked so easily. Go firewall and open the stealth ports wizard. And pick the setting according to the pic below. Now everytime you use a p2p is will ask for incoming connection rule. By default your suppose to manually add ports so you do not accept random incoming people trying to get in.

-{ Quote: "f I can no longer control which app is allowed/ask/blocked ? Where can I prevent a certain app to connect to Internet ? I have adobe acrobat running, let it search for updates and ... n" }-Attention with adobe, I think there are some exploits itw...

you can allow or block any application,just press on the firewall tap hit advanced it will take you to network security policy from there you can change the settings for an example , outgoing, allow .browser.etc.

-{ Quote: "you can allow or block any application,just press on the firewall tap hit advanced it will take you to network security policy from there you can change the settings for an example , outgoing, allow .browser.etc." }-
Yes I agree; but Adobe Acrobat is nowhere in sight in that list .....

-{ Quote: "Yes I agree; but Adobe Acrobat is nowhere in sight in that list ....." }-

When using the default security level (Train with Safe Mode), CFP V3 RC1 will auto create FW rules for that application the first time it is launched since it considers it to be a safe application. Note the little pop-ups above the system tray for each rule created. At least that is how it works on my system. Once the rule is created, you can change it to fit your needs. The same is true for the D+ rules if D+ is enabled.

Al

Comodo 3 without defense+ is not much better than kerio 2.1.5

-{ Quote: "Comodo 3 without defense+ is not much better than kerio 2.1.5" }-

That is because most 2.4 protection is now the hips. Try 2.4 and you will see how secure it is.

-{ Quote: "Comodo 3 without defense+ is not much better than kerio 2.1.5" }-Comodo3 is a combination of firewall/HIPS, so if you do not want to install/enable the HIPS, you will be left with the firewall alone, then with the option to install, or continue use of, the HIPS you already use/know.

This was requested, and if fully implimented, where various parts/modules can be installed(or not), is a good example of a vendor following users wants/needs.

The developer is also is going to implement a antileak and ics mode after the final release.

Antileak should mimic comodo pf 2.4 so it still offers high security to stop the known methods of malware. Many people you can now see are saying comodo is not as good as online armor or outlook because it no longer is in 1st on matousec but if you change 1 single setting it will pass all. This is because comodo offers this 1 setting that the others do not which makes the program easier to use. It was just a simple safelist entry that stopped comodo 2.4 from getting 100%. This is now an option in the 3.0 installation.

-{ Quote: "The developer is also is going to implement a antileak and ics mode after the final release.

Antileak should mimic comodo pf 2.4 so it still offers high security to stop the known methods of malware. Many people you can now see are saying comodo is not as good as online armor or outlook because it no longer is in 1st on matousec but if you change 1 single setting it will pass all. This is because comodo offers this 1 setting that the others do not which makes the program easier to use. It was just a simple safelist entry that stopped comodo 2.4 from getting 100%. This is now an option in the 3.0 installation." }-

Which setting and what safelist entry? What is a safelist for that matter?

Some of the other members seem to echo my sentiments with regard to the increase in complexity in the move from version 2.4 to version 3. I believe that all but the most savvy users will become confused and make serious configuration errors that will erode or even evade the potential security of Comodo 3.0. I believe it will be nowhere near as widely accepted as 2.4.

I think the list of FW/HIPS scoring 100% is going to grow even more by year's end, and Matousec will have to work on up-grading "his product" instead of the developers. The shoe will be on the other foot for a change. lol

He is already upgrading the tests. There will be no more tests until the current tests are rewritten and upgraded.

Can someone explain to me what to do with the files in the "my pending files" window of Comodo? Are they working or not? Were they installed or not? The "help" link is not available for my version of Comodo.

-{ Quote: "Can someone explain to me what to do with the files in the "my pending files" window of Comodo? Are they working or not? Were they installed or not? The "help" link is not available for my version of Comodo." }-

My understanding is that files that appear in my pending files, are files that have been newly created, modified or deleted since the time that CFP was installed. If a new file belongs to CFP's safelist , it will not show up in my pending files. Only files that are unknown are put there so the user can review them and decide what needs to be done. The same holds true for modified files. Some files may have been deleted for some reason and these will also show up here so you are aware that they have been deleted. Use the purge button to clean the list of deleted files after reviewing. You can thin out the list even more by either moving the files to quarantine, your own safelist, or simply removing the file from the list in which case it will also be considered safe. You can also add files to my pending files if you do not want them to be considered safe.

Documentation for V3 should be coming out soon. My description here may not be 100% accurate, but this is what I have determined while testing the RC1.

Al

hey

I got a problem


Assume my programm X wants to connect to the net. It needs therefore to outgoing connections in sequel order to different IPs.

How can I block the first IP and how can I allow the second?

Best would be to have a rule fore the first connection and to allow it each time manually the second! Cause I need control over the second connection...

PS: I managed to set up a rule by myself but I wasnt able to manage that with Comodo in learning mode or any other mode!?

Eg. in learning mode warning pops up for the first conection with IP and port but beside wich action I take the rule created is a general one. Comodo misses to create it for the IP taken into consideration! I mean the rule should be individual and only for the IP and port shown in the warning pop up or?

greetz.

-{ Quote: "hey
How can I block the first IP and how can I allow the second?
" }-

Change firewall alert level to Very High

-{ Quote: "Change firewall alert level to Very High" }-


You mean "Defense&Security Level" ? Because there I have the option to 'go paranoid'.
If not, please tell my where I can change to Very High.

greetz

I don't remember as I don't have Comodo installed right now. It should be in the main GUI (not the tray icon), under firewall. IIRC was the second tab of the last option of the second page of settings (the first page is called common task IIRC).

Let's post in this thread. Comodo Firewall Pro 3.0 (Final) Released Today (http://www.wilderssecurity.com/showthread.php?t=192066)