a question

Discussion in 'other firewalls' started by white31, Apr 8, 2014.

Thread Status:
Not open for further replies.
  1. white31

    white31 Registered Member

    Joined:
    Apr 8, 2014
    Posts:
    40
    Hello, I'm new here, using comodo latest version firewall and have a question about some ports and seeking assistance. May I post here? :)
     
  2. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    I think it's appropriate forum, so go ahead.

    hqsec
     
  3. white31

    white31 Registered Member

    Joined:
    Apr 8, 2014
    Posts:
    40
    Well, I'm just normal home user, not very familiar with security programs and internet traffic, that's why I need good people's assistance. As I already said I use Comodo firewall, I have set proactive security and stealth ports options and thought I done but recently I came to this article here: https://support.hidemyass.com/entri...s-Netbios-port-exposure-remote-access-removal and got a bit confused now...All the ports mentioned there seems to be dangerous and author suggests to block those ports in Comodo global rules...So I dont know, do I really need to add them (or maybe part of that) in Comodo manually or they already are blocked and secured?! I did Pcflank and gibson stealth test and all ports are stealthed but still...I also disabled netbios and SSDP Discovery service as mentioned there...I'm a bit concerned because after I read that article I looked in TCPview and found port 500, ipsec msft and also 2 epmap(which imo should be blocked) listening something...I dont have router, nor VPN service, so what do use them, maybe Avast?! anyway, my main question is: do I still need to add all those ports manually block in Comodo global rules?
     
  4. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    If you already disabled services that are listening on those ports, you should be safe. OTOH if you don't have router or other NAT device and don't use file and printer sharing, you can add those rules to your global rules - just to be safe.

    hqsec
     
  5. white31

    white31 Registered Member

    Joined:
    Apr 8, 2014
    Posts:
    40
    Thanks for the advice, still seems to me those are too much ports for adding and also I'm not sure do they need to be added in global or system rules?! I mean I blocked "system" when comodo asked me first time, I"m not sure what that 'application system" was, maybe file and printer sharing?! I also set svchost to outbound only in applications rules and checked some more security options in firewall...Is here a good guide how to configure Comodo firewall?! I can't find such...thanks.
     
  6. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Here is link to basic answers about firewalls: link.
    Here is link to Comodo Learning thread: link. It's an old version of FW, so I don't know if it is of any help.
    You can get more help and advices on their dedicated forum: http://forums.comodo.com/index.php.

    hqsec
     
  7. Compu KTed

    Compu KTed Registered Member

    Joined:
    Dec 18, 2013
    Posts:
    1,411
  8. white31

    white31 Registered Member

    Joined:
    Apr 8, 2014
    Posts:
    40
    Thanks...about basic answers and Comodo installation links I have read before...I posted in comodo forum my question but haven't got answer yet
     
  9. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Ok, I didn't know that. I'm not using Comodo and don't have experience with their FW. Maybe somebody with more knowledge will come along and help you out with your questions.

    hqsec
     
  10. white31

    white31 Registered Member

    Joined:
    Apr 8, 2014
    Posts:
    40
  11. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,899
    Location:
    localhost
    You should be good to go! Listening to what? There is a huge difference if you are listening to the internet or to localhost. The latter is perfectly normal.
     
  12. white31

    white31 Registered Member

    Joined:
    Apr 8, 2014
    Posts:
    40
    about these it seems I was wrong because when I ended epmap process which was associated with RPC service in task manager, CF stopped working.

    I also went up and blocked all those ports I mentioned in my link above+ ports 5357-5358 in CF global rules and at the moment dont see any problems in windows...just wanted profi opinion if this is right thing to do...
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.