Hi a friend of mine bought a laptop with w10 pro , she is really a novice ,i know windows defender is a good Av and free but seeing she is really a novice i have installed Kaspersky free edition , great really great antivirus for the firewall , i'm thinking about comodo firewall , i would like to install only the firewall for the firewall , i would like to install and create some rules for her , she uses few programs , i would like to create some rules to protect and let be surf safer i remember the first time i installed comodo firewall was really great , i'm talking about years and years ago but buggy what do you think about this combo or setup ? and comodo firewall free is still updated ? thanks
for a novice user i wouldn't complicate things for her, windows firewall is fine (especially if already behind a hardware router/firewall)
I would not recommend Comodo Firewall to my enemy, definitely not to a novice friend. Windows Firewall Control or Evorim Free Firewall would do. Glasswire is perfect, if she can afford it, nice GUI and such. Last time updated in Dec 2020, CIS in March 2021.
Thanks for that heads up. The plans were in the making here to add CFW to my Window 10 with @cruelsister feature set for containment. And it's probably still sufficient but.......
I think the free version using CS' setup is probably still excellent. In my case a while back I was using a combination of her config plus customized HIPS rules, and it worked fine but one day out of the blue all my rules disappeared, as apparently has happened to others. I no longer use CFW partly because of that reason, I don't like its firewall rules interface and because I decided on going in a different direction with securing my device.
Thanks for the reply. I have heard that complaint and issue for years. And it's still isn't been addressed? One thing. Given that it WILL and DOES continue to happen isn't there a setting in CFW to export ALL the rules in the event that issue recurs for folks?
Not addressed yet afaik. Absolutely yes, rules can be exported and imported as needed, so that feature saved my bacon
hi @TairikuOkami but i will create some rules and i will set in automatic mode does windows direwall control or Evorim Free Firewall let me to create granular firewall rules ? i would like a firewall that can work in paranoid mode or like eset interactive mode , just to create some rules for email client and other software , and after let in automatic mode glasswire is great , but let you block or allow , does't let you create a complex rules with lots of pup ups by the way kaspersky cloud free is incredible light in real time and with a good firewall will be a great combo thanks TairikuOkami hi @kC_ I tried to create some router firewall rules to block telegram for her on a netgear without luck thanks hi @wat0114 may i know what have you installed (firewall) ? i would like a firewall that can pup up every outgoing connections thanks
WFC can do it by creating rules and then disabling notifications. Connection log shows, what have been blocked, and creating rules is as easy as double-clicking on the entry or allowing popup notifications.
+1 @mantra this is what I use, except I don't disable notifications. WFC is a nice front-end for Windows inbuilt fw.
hi @TairikuOkami but is there not a paranoid mode that can pop pup every connection in real time so i can create a rule easly? i'm used to work with outpost , in the past comodo , eset firewall i did not understand with notifcation on , it does pop up every incoming and outgoing connection with allow and deny and create rules? about Evorim Free Firewall? thanks
Yes, but I thought that by paranoid mode you mean block all except allowed, I have not used Comodo in a while. I miss Outpost too. Yes, but you have to get IP ranges yourself. I use IP Info for that. That is just allow/block, useless for you.
Running CFW, and I've used it almost since it came on the scene, with a month here or there playing with something else. I always go back to it. Never had any problems, or settings vanish. I began using Cruelsister's setup when I found her on Youtube a few years ago. Highly recommend it to anybody who asks. Just a few mouse clicks that even a newbie can manage.
I would recommend just sticking with Windows Firewall and Defender. What I would suggest to have her use a Standard User Account, and, to what you said, preinstall the few software she uses. For additional software installation and/or updates you can try and help her out (use TeamViewer QuickSupport if you're gonna do it remotely). I think Chromium Edge has good protection, with SmartScreen and isolation, but if she wants another browser, like Chrome or Firefox, just add a reputable ad blocker with badware filter/s.
Hi @TairikuOkami really very nice and powerfull fireall enabling notification , does windows firewall control save everything in the event vierver log ? i remember an option that can disable wfc to save log in the firewall viewer and wcf event viewer log i have tested on a old laptop with w7 without all the update , and only v4 works , i guess v5 and 6 need an higher .net framework version sadly wfc when i click to create a custom rule , it doesn't offer to set an ip range as soon i start an application without rule thanks ps could you help to create a router firewall to block some static ip Hi tried comodo firewall too , but i don't like anymore in custom ruleset (i call paranoid) , it does let me tweak and create a rule as soon i run an application i have tried with firefox , or Vlc , it does pop up the connection , but does let me to create a rule based on this connection at least wfc let me create a custom rule thanks
Sorry, I do not know, I hardly ever look at event logs. Unfortunately the dev mentioned that it would require a driver to monitor the network, so it would have to be running as admin as well and that would increase it's exploitability. When you left click on IP, it opens whois webpage with IP range displayed as well. But it opens link in http and I have http connection blocked, so it is not helpful for me either.
hi @TairikuOkami by the way amazing little program TairikuOkami could you help me to create a router firewall rule to block some static ip? i understood you use IP Info and you have dns cache disabled (on w10 i can't do it = and how have you blocked http connection? thanks TairikuOkami
Not anymore, I use DoH via Windows Dev version and it uses DNS Cache to do it. So I either use that or 3rd party software to handle encrypted DNS requests, so I rather stick with the default. Just by blocking TCP port 80 for the browser. as well as for other essential software like discord, steam, onedrive, there is no reason they should connect via unencrypted connection at any time. I could try, but local and loopback rules always gave me a headache, but WFC asks for everything, so it should not be a problem.
blocking telegram? uninstall! to sniff ip and port http://www.nirsoft.net/utils/smsniff.html (portable, no drivers)
You guys keep going on over Comodo and all that's doing is motivation where the likelihood I will of a must install to new Windows 10 machine still fresh. Already acquainted and proven @cruelsister CruelComodo containment is I not seen an equal yet!
At first check to what IPs it connects in your location. I have Telegram allowed in Android by allowing 2 IP ranges and Akamai CDN, but as long as you block login IP, CDN should not matter. Like.149.154.164.0-149.154.167.255