Great free firewall

[YeOldeStonecat]

I've mentioned it a few times...but never really got into it

Comodo

http://www.personalfirewall.comodo.com/

Supported..(unlike most of the other free ones which have stopped development/support after being bought out).

Matter of fact, version 2 was recently released.

Several writeups have shown it to perform very well in leak tests, and stealthing.

A little naggy when you first install it..asking this and that, like most software firewalls. But it does have a large database of "safe" programs..and if you have it scan your system for install software first..it cuts down on those first several days of nagginess.

Default settings are fine, and you can roll up your sleeves and get really advanced with it too.

[mnosteele52]

Hey YOSC they have a nice list of freebies, have you tried their anti-virus or anti-spam? Also, how much RAM does the firewall use?

[YeOldeStonecat]

Haven't tried their AV or spam filter..but going to try their backup utility.

Comodo hovered between 25 - 29 megs on a fresh install (I don't know if that goes up much once it "learns" your system and builds up the ruleset), that system was a 512 megger, 1.2 GHz rig.

I'd seen it mentioned a few times over at Wilders..seems to be liked by the few who know about it.

[Shinobi]

I've mentioned it a few times...but never really got into it

Comodo

http://www.personalfirewall.comodo.com/

Supported..(unlike most of the other free ones which have stopped development/support after being bought out).

Matter of fact, version 2 was recently released.

Several writeups have shown it to perform very well in leak tests, and stealthing.

A little naggy when you first install it..asking this and that, like most software firewalls. But it does have a large database of "safe" programs..and if you have it scan your system for install software first..it cuts down on those first several days of nagginess.

Default settings are fine, and you can roll up your sleeves and get really advanced with it too.

Thanks Yosc.. i'll check it out..

[YARDofSTUF]

I'll have to try this on a buddy's PC.

[KoRnGtL15]

Its a very good firewall. I had ZoneAlarm free version and uninstalled it. I went Comodo and havent looked back since. Also it isnt a resource hog like ZA. Comodo is a lightweight!

[trogers]

Not good for my torrent downloads.

It has only 3 settings to choose - Block all, Custom and Allow all.

At Custom, it has no options to port forward, and even though I have identified my torrent client as a trusted application, more than half of incoming packets from peers get blocked off and a 30-40% rise in consumption of CPU load by its process "cpf".

I have to set Comodo to Allow all when I run torrents to avoid this problem.

[YARDofSTUF]

Not good for my torrent downloads.

It has only 3 settings to choose - Block all, Custom and Allow all.

At Custom, it has no options to port forward, and even though I have identified my torrent client as a trusted application, more than half of incoming packets from peers get blocked off and a 30-40% rise in consumption of CPU load by its process "cpf".

I have to set Comodo to Allow all when I run torrents to avoid this problem.

http://www.wilderssecurity.com/showthread.php?t=145704

Starting at Post #4.

[trogers]

http://www.wilderssecurity.com/showthread.php?t=145704

Starting at Post #4.

Thanks for the link, YoS.

Followed the post but had to add an additional network control rule:

Allow ICMP in - any source - destination LAN IP of comp - criteria where ICMP message is any.

Note: this is allowed in only and not out as you do not want your comp to send out responses to ICMP pings of probes.

[YARDofSTUF]

So with those additions it works fine now? I've recommended Comodo a bunch of times, lol.

[trogers]

So with those additions it works fine now? I've recommended Comodo a bunch of times, lol.

I am still testing. Presently finishing a few slow torrents so would not know if I can achieve max speed with well-seeded ones till later.

Made adjustments to network control rules and observed the activity logs and that is how I found out the need to allow in ICMP pings as well.

Will let you know in a few days after testing the settings.

[trogers]

http://www.wilderssecurity.com/showthread.php?t=145704

Starting at Post #4.

Hi, YoS

Here is the latest outcome of my testing.

I had to add the following Network Control Rules to get BitComet version 0.86 to work through Comodo personal Firewall:

1. Allow In TCP or UDP to a Port Range (Listening Forward Port same as the one used in the router)

2. Allow all ICMP pings for both In and Out

3. Allow In TCP or UDP to Destination Port 80

With these additional network control rules, My torrents can download normally under the 'Custom' setting.

[YARDofSTUF]

Cool, thanks for the experiment and results, Mr. T

[Room101]

Comodo also has a truly excellent forum. No flames, no jerks, just people who are exceptionally generous in their willingness to help (well, maybe it's not pure generosity, as I think a couple of them work for Comodo).

[raviyatnalkar]

what are the other precautions i ve to keep in mind while using this???
like windows firewall have to be turned off while using this one... please direct...

[YARDofSTUF]

what are the other precautions i ve to keep in mind while using this???
like windows firewall have to be turned off while using this one... please direct...

Ya you really only need comodo.

[caveman]

Sygate (even tho it`s Symantec now) Personal Firewall is the one for me!

7.5 - 8MB usage and next to no CPU

Never looked back after binning ZA

[jeremyboycool]

Any thoughts on their back-up and anti virus?

[YARDofSTUF]

Any thoughts on their back-up and anti virus?

Havent seen any comparasions with it included.

[mnosteele52]

Any thoughts on their back-up and anti virus?

Backup seems to be OK, but Cobian Backup is better. Anti-virus sucks.

[jeremyboycool]

Cool cool. I'll check out Cobian. I already uninstalled the Comodo anit virus, AVG seemed to do a better job.

[YARDofSTUF]

Cool cool. I'll check out Cobian. I already uninstalled the Comodo anit virus, AVG seemed to do a better job.

Active Virus Sheild is the good freebie.

[jeremyboycool]

Active Virus Sheild is the good freebie.

Thanks!

[jjstrade]

Thanks for the tip on Comodo. It appears to be a great program.

I found speedguide.net when I realized that Port 8080 was wide open. Comodo helpd me to block (or filter it) with a rule. I haven't done a complete scan... yet. Researching other vulnerable ports.