CFP3/Help Guide/Firewall Task Center/My Network Zones
From ComodoWiki
Contents |
Firewall Tasks > Common Tasks - My Network Zones
A computer network is a connection between computers through a cable or some type of wireless connection. It enables users to share information and devices between computers and other users within the network. Obviously, there are certain computer networks that you will need to grant access to - including your home network or work network. Conversely, there may be other networks that you will want to restrict communication with - or even block entirely.
Comodo Firewall Pro allows you to define 'Network Zones' and to specify the access privileges of these zones. A 'Network Zone' can consist of an individual machine (including a single home computer connecting to the internet) or a network of thousands of machines to which access can be granted or denied.
To access the 'My Network Zone' interface (above), click on 'My Network Zones' in Common Tasks.
Note 1: Adding a zone to this area does not, in itself, define any permission levels or access rights to the zone. This area allows to define the zones so you can quickly assign such permissions in other areas of the firewall.
Note 2: A network zone can be designated as 'Trusted' and allowed access by using the 'Stealth Ports Wizard' (An example would be your home computer or network)
Note 3: A network zone can be designated as 'Blocked' and denied access by using the 'My Blocked Network Zones' interface. (An example would be a known spyware site)
Note 4: An application can be assigned specific access rights to and from a network zone when defining an Application Rule. Similarly, a custom Global Rule can be assigned to a network zone to all activity from a zone.
Note 5: By default, Comodo Firewall Pro will automatically detect any new networks (LAN, Wireless etc). This can be disabled in the Miscellaneous - Settings area of the firewall.
To add a New Network Zone
you need to(i) Define a name for the zone
(ii) Select the addresses to be included in this zone.
- Define a name
for the zone - Click the 'Add...' button on the
right hand side
and select 'A New Network Zone...' from the drop down menu:
- A dialogue box will appear asking you to specify
new zone's name. Choose a name that accurately describes the network
you are creating.
- Click Apply to confirm your zone name. This will add the
name of your new zone to the My Network Zones list:
Next you have to Select the addresses to be included in this zone
Right click on the name of the new zone and select 'Add...' from the menu:
- The 'Add a New Address' dialog allows you to specify an address by typing an IP address; an IP range; an IP address mask; a host name or a MAC address.
Click 'Apply' to confirm your choice. The new zone will now appear in the main list along with the addresses you assigned to it.
Once created, a network zone can be:
- Quickly called as 'Zone' when creating or modifying a network policy
- Quickly called and designated as a trusted zone from the 'Stealth Ports Wizard' interface
- Quickly called and designated as a blocked zone from the 'My Blocked Network Zones' interface.
To edit the name
of an existing Network Zone - select the name of the zone
in the list (e.g. home) and select 'Edit...' to bring up the naming
dialog.
To add more addresses to
an existing Network Zone - right click on the zone name
and click 'Add...' as
shown earlier OR select the zone name, click the 'Add..'
button on the right and select 'A New Address... from the drop down
menu.
To modify or change the
existing address in a zone - right click on the address
(not the zone name) and select 'Edit..' OR select the actual address
(not the zone name) and click the 'Edit... button on the right.
