Reply to thread

Message: <blockquote data-quote="wat0114" data-source="post: 1101005" data-attributes="member: 91306">Btw, even though specific firewall rules can't be made for svchost services (Dhcp, dnsserver, etc) in Comodo, it is possible to still create rules that restrict it to suit the user's requirements. Just a few of the ones I had...<table style='width: 100%'><tr><td>Program Path or Ruleset </td><td>Action </td><td>Protocol </td><td>Direction </td><td>Source Address </td><td>Destination Address </td><td>Source Port </td><td>Destination Port </td><td>Rule Name </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>TCP </td><td>Out </td><td>Loopback Zone </td><td>Loopback Zone </td><td>Any </td><td>Any </td><td>Loopback Zone </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>UDP </td><td>Out </td><td>Any </td><td>1.1.1.1 </td><td>Any </td><td>53 </td><td>DNS-Cloudflare </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>UDP </td><td>Out </td><td>Any </td><td>1.0.0.1 </td><td>Any </td><td>53 </td><td>DNS-Cloudflare </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>TCP </td><td>Out </td><td>Any </td><td>Any </td><td>Any </td><td>443 </td><td>Allow out to HTTPS </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>TCP </td><td>Out </td><td>Any </td><td>Any </td><td>Any </td><td>80 </td><td>Allow out to HTTP </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>UDP </td><td>Out </td><td>Any </td><td>Any </td><td>123 </td><td>123 </td><td>Windows Time Update </td></tr><tr><td>C:\Windows\System32\svchost.exe </td><td>Allow </td><td>UDP </td><td>Out </td><td>0.0.0.0 </td><td>255.255.255.255 </td><td>68 </td><td>67 </td><td>DHCP </td></tr></table>Years ago I was more motivated with more time on my hands to actually restrict to IP ranges with subnets, such as Microsoft update servers, probably more important to port 80, but nowadays I can't be bothered. IPv6 is not going away, and more websites, especially the big players, are adapting it, so I that's why I wish to see a firewall filter it properly. I don't see a compelling reason to disable it, especially as a home user.</blockquote>

Verification

Top