The PF GUI can be found on System Preferences: Security & Privacy: Firewall, unfortunately this GUI is too rudimentary so you'll probably have to set the rules in the pf.conf file. The powerful OpenBSD PF is now recommended, anyway ipfw+Waterroof will work. #ICEFLOOR MAC MAC OSX#Ipfw has been deprecated since Mac OSX 10.7 and 10.8. If you're not comfortable with shell and command lines, ipfw has a practical frontend, Waterroof, that will allow you to set the aforementioned rules in order to block outgoing packets in case of accidental VPN disconnection: Mac OSX 10.6 was shipped with the FreeBSD ipfw firewall. #ICEFLOOR MAC FOR MAC OS#Is there a good and easy way to block traffic when VPN disconnects for Mac OS X? Please do not hesitate to contact us for any further information. Leave "Source Port" and "Destination Port" to "Any". Open you Comodo control center, click on the tab "Firewall", select "Network Security Policy", click on the tab "Application Rules".ĭetect the application you want to block when not connected to Air, or add it in the list through the "Browse" command, right-click on the application entry, select "Edit rule" (or "Add rule" if the application has no rules), and define the rule as you can see in the attached image. Comodo supports both IP ranges (without need of CIDR notation) and the NOT operator. Therefore, in order to block a program to send out packets when you're not connected to Air, just block (for any program you wish) any outgoing packet NOT coming from range 10.4.0.0->10.9.255.255, from any port to any port. When you connect to AirVPN, regardless of the server you're connected to, your TUN/TAP adapter is DHCP-assigned an IP address in the range specified by our Technical Specs page. With Comodo, the procedure is simple and fast. Sorry, I don't have a lot of experience with firewall setup, could really use some help. Should I be opening the IP range that I can see I am connected on the client? Or the IP ranges listed on your technical specs page? Then do I need to open an IP range for each different one of your servers I want to connect to? Also do I still seperately need to open an incoming port for the port forwarding? So I tried using the Comodo firewall to block uTorrent unless it was on your IP range. Which I would have to assume would slow down the torrents? Problem is, it seems the only way you can do it via the Win 7 firewall is to turn off a whole bunch of protocols in uTorrent that the firewall can't block such as DHT. I have tried following the link in that post.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |