2011년 3월 1일 화요일

Comodo 방화벽 사용시 인터넷 끊김 현상 해결법 (Comodo 포럼 제공)

출처) No network connection after using Stealth Ports Wizard (DHCP Broken) - http://forums.comodo.com/firewall-faq-cis/no-network-connection-after-using-stealth-ports-wizard-dhcp-broken-t41463.0.html

Q:
After using Stealth Ports Wizard i lost my network connection, how is that possible ?
(DHCP 연결해제는 Comodo에 Stealth 기능으로 인한 문제로 보입니다.)
CIS also detected a new private network in the range 169.254.x.y



A: (답변)
Most common cause is that you blocked DHCP traffic from functioning.
(Stealth기능이 DHCP에 traffic을 차단하는것으로 보입니다.)
DHCP is a mechanism that allows Routers to provide PC's with an IP Address and other details on how to connect to the network.

More information about DHCP can be found here

How to fix this ?

1) Determine if your configuration is using DHCP. (DHCP 서비스가 정상적으로 작동중인지 확인하세요.)

Open a command-box (Start, Run, cmd) and type ipconfig /all
Output should look like this:

C:\>ipconfig /all

Windows IP Configuration

        Host Name . . . . . . . . . . . . : <YOUR COMPUTER NAME>
        Primary Dns Suffix  . . . . . . . :
        Node Type . . . . . . . . . . . . : Hybrid
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No
        DNS Suffix Search List. . . . . . : <your domainname>

Ethernet adapter Local Area Connection:

        Connection-specific DNS Suffix  . : <your domainname>
        Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
        Physical Address. . . . . . . . . : AA-BB-CC-XX-YY-ZZ
        Dhcp Enabled. . . . . . . . . . . : Yes (Yes 가 되어있는지 확인하세요.)
        Autoconfiguration Enabled . . . . : Yes
        IP Address. . . . . . . . . . . . : a.b.c.d
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
        Default Gateway . . . . . . . . . : a.b.c.e
        DHCP Server . . . . . . . . . . . : a.b.c.d
        DNS Servers . . . . . . . . . . . : a.b.c.d
        Primary WINS Server . . . . . . . :
        Lease Obtained. . . . . . . . . . : Friday, June 01, 2009 0:00:00 PM
        Lease Expires . . . . . . . . . . : Friday, July 02, 2009 0:00:00 PM

Check to see if DHCP Enabled = YES then your using DHCP to get an IP Address.

2) Check the Firewall logging to see if the traffic was blocked.
(아래의 내용이 Comodo 방화벽 로그에 기록되었는지 확인하세요.)
Go to Firewall, View Firewall Events, and check if there is traffic blocked:

Action: Blocked
Protocol: UDP
Source Port: 67
Destination: 255.255.255.255
Destination Port: 68



3) Create a global rule to fix the problem.
(문제를 해결하려면 Comodo 방화벽 Global Rule에 아래 내용을 추가하세요.)
Go to Firewall, Advanced, Network Security Policy, Global Rules and click on [Add..]

Action: Allow
Protocol: UDP
Direction: In
Description: <leave empty>

Source Address: Any
Destination Address: 255.255.255.255
Source Port: A Single Port 67
Destination Port: A Single Port 68

Then press [Apply] and [Move Up] to set this as the first rule, press [OK] and go back to the command-box, now type ipconfig /renew, and DHCP should be fully functioning again.

이미지를 따라해 보세요.









<위의 방법으로도 해결이 안되면 아래 사항을 적용해 보세요.>

1. CIS > Firewall > Firewall Behavior Settings > Advance > 'Block fragmented IP Datagrams' 체크해제

2. CIS > Firewall > Firewall Behavior Settings > Advance > 'Protect the ARP Cache' 체크해제



3.  CIS > Firewall > Stealth Port Wizards > "Alert me to incoming connections and make my ports stealth on a per-case basis" - Stealth Ports Wizard 메뉴중 2번째 적용


댓글 없음:

댓글 쓰기