WIKI: How to create application rules of the firewall on windows profile?

1

Hi ,

Application Rules - Allows the users to add or modify or remove Custom ruleset for firewall settings.

Step [1]: Go to ITSM > CONFIGURATION TEMPLATES > Profiles

Step [2]: Click Create icon and Choose the Create Windows Profile from the drop down menu

Step [3]: Enter the Name, Description of the profile and Click the Create button

Step [4]: Click Add Profile Section and Choose Firewall from the drop down

step_1.png
step_1.png939×549 58.4 KB

step_2.png
step_2.png902×534 61 KB

step_3.png

step_4.png
step_4.png1239×727 44.1 KB

2

Step [5]: Click the Confirm button

Note:

There are some necessary settings to be completed to continue further on advanced firewall profile such as

Step [6]: Select the tab Application Rules

Step [7]: Click Add button and Fill the form Application Rule, if you want to add more application rules, Otherwise leave the setting as in the beginning.

step_5.png

step_5.1.png
step_5.1.png1245×699 28.7 KB

step_6.png
step_6.png1241×372 14 KB

step_7.png
step_7.png1234×348 13.7 KB

3

Step [8]: Choose the choice ‘using existing target’ or ‘using new target’

Enter the name if you would like to create a new file group target.

Choose the choice ‘using existing target’ or ‘using new target’

If you would like to use existing target then Click the drop down Browser and Choose the specific option from there

Step [9]: There are two possible options to continue further with adding new ruleset, Choose the option ‘Use ruleset’ or ‘Use a custom ruleset’ from the form

  • Use ruleset - predefined ruleset by Comodo
  • Use a custom ruleset - custom ruleset which can be set by the user (you)
If you would like to create a predefined ruleset,

Click the radio button ‘Use ruleset’

Options:

  • Web Browser - all applications belongs to browse the internet, Example: IE, Firefox, Chrome, Opera, and etc.
  • Email Client - all applications belongs to email client interface, Example: Thunderbird, and etc.
  • FTP Client - all applications belongs to FTP interface, Example: FileZilla, and so on
  • Allowed Application - all applications which are set to be allowed
  • Blocked Application - all applications which are set to be blocked
  • Outgoing Only - all applications which are set to be allowed for outgoing connection

step_8.png
step_8.png881×356 11.3 KB

step_8.1.png
step_8.1.png1038×532 43.6 KB

step_8.2.png
step_8.2.png880×352 11.5 KB

step_9.png
step_9.png882×358 14.8 KB

4

Choose application category from the drop down and click OK button

If you would like to copy from the existing rulesets,

Click the radio button ‘Use a custom ruleset’ and Click ‘Copy from…’ drop down

Options:

  • Ruleset - Which helps to copy from desired existing predefined rulesets
  • Another Application - Which helps to copy from desired existing user-defined rulesets
If you want to use predefined Ruleset then Choose Ruleset from the 'Copy from...' drop-down

Choose desired predefined ruleset from the drop down. Example: Web Browser

step_9.1.png
step_9.1.png880×356 10.6 KB

step_9.2.png
step_9.2.png886×444 14.4 KB

step_9.3.png
step_9.3.png889×443 17.4 KB

5

Explanation:

From the table, you can add or remove rules or you can modify a specific rule from the table

If you want to add rules then click Add Rule button

Fill the Firewall Rule form and Click OK button to submit

Explanation:

Action - Allows setting the action that firewall would take over the rule

  • Allow - If chosen, which allows the connection
  • Block - If chosen, which blocks the connection
  • Ask - If chosen, which asks you (user) to confirm the connection to be allowed or blocked
Log as Firewall event if this rule is fired - Can be enabled or disabled for logging the event into Firewall Events when it is triggered

Protocol - Allows setting the type of protocol for the rule

  • TCP - If chosen, the rule applied only for TCP connection
  • UDP - If chosen, the rule applied only for UDP connection
  • TCP or UDP - If chosen, the rule applied only for TCP or UDP connection
  • ICMP - If chosen, the rule applied only to ICMP connection
  • IP - If chosen, the rule applied only for IP connection
Direction - Allows setting the direction of the connection
  • In - Incoming connection
  • Out - Outgoing connection
  • In or Out - Either Incoming or Outgoing connection
Description - Allows describing the rule

Source Address - Allows you to apply the rule for the Address of the device that tries to access your endpoint

Destination Address - Allows you to apply the rule for the Address of the device that your endpoint tries to access it

step_9.4.png
step_9.4.png891×682 22.5 KB

step_9.5.png
step_9.5.png880×671 22.3 KB

step_9.6.png
step_9.6.png890×525 18.6 KB

step_9.7.png
step_9.7.png891×596 25.4 KB

6

Options:

Exclude - If enabled, allows to set up devices to be excluded from the rule

Type - Types of the Address of the device

Any address - any devices

Hostname - device that has the same name of hostname

step_9.8.png
step_9.8.png879×105 4.54 KB

step_9.9.png
step_9.9.png884×99 4.28 KB

step_9.10.png
step_9.10.png875×114 3.49 KB

7

IPv4 address range - device from the range of IP addresses

IPv4 single address - device from the same IP address

IPv4 subnet mask - device from the same subnet mask

IPv6 single address - device from the same IP address

step_9.11.png
step_9.11.png876×170 4.34 KB

step_9.12.png
step_9.12.png879×129 3.9 KB

step_9.13.png
step_9.13.png877×168 5.2 KB

step_9.14.png
step_9.14.png880×109 3.62 KB

8

IPv6 subnet mask - device from the same subnet mask

MAC address - device that has the same MAC address

Network zone - device that belongs the same network zone

step_9.15.png
step_9.15.png876×154 4.96 KB

step_9.16.png
step_9.16.png879×118 4.97 KB

step_9.17.png
step_9.17.png879×132 5.33 KB

9

Source Port - Allows you to apply the rule for the port number or ranges of the device that tries to access your endpoint

Destination Port - Allows you to apply the rule for the port number or ranges of the device that your endpoint tries to access it

Options:

Exclude - If enabled, allows to set up the port number or range to be excluded from the rule

A port range - port from the range of ports

A set of ports - port from the set of ports

A single port - port which is same of the given port

step_9.18.png
step_9.18.png872×167 6.65 KB

step_9.19.png
step_9.19.png877×158 4.95 KB

step_9.20.png
step_9.20.png874×162 6.12 KB

step_9.21.png
step_9.21.png883×118 3.39 KB

10

Any - any port

Check whether you have the specified rule and Click OK button

Step [10]: Check whether you have the application rule on Application Rules and Click Save button

Step [11]: Click Profiles menu and check whether the profile has been added to the table.\

step_9.22.png
step_9.22.png872×51 1.92 KB

step_9.23.png
step_9.23.png892×728 25.3 KB

step_10.png
step_10.png1250×620 27.7 KB

step_11.png
step_11.png1221×675 86.6 KB

11

It seems that I have read many of your wikis, but I can never see your pictures, I can’t even open them in a differnt tab, says intranet.comodo.com could not create a secure connection.

12

Hi @BOSS

I will fix this issue as soon as possible. Thank you for notifying me.

Kannan

13

Hi @BOSS

It seems that I have read many of your wikis, but I can never see your pictures, I can’t even open them in a differnt tab, says intranet.comodo.com could not create a secure connection.

We have fixed images issue for most of the wiki topics and processing rest of them.

Please glance at below mentioned page for wiki topics index

https://forum.mspconsortium.com/forum/products/other-comodo-products/comodo-device-management/wiki-faq-how-to/9831-wiki-faq-how-to-index

Thanks,
Kannan

14

The ones I looked at seemed to be good, thanks!!!