Just giving this firewall a test at work. I want to set it so that all computers on my local LAN can connect to my testbox (running Comodo) via remote desktop.
Under Firewall, Network Security Policy, I created a global rule that I thought would do it, allowing access to port 3389.
However, when a client tries to connect, they cannot. On the testbox (running comodo), I'm prompted as to whether I want to allow svchost.exe or not.
Do I have to have 2 rules, one allowing 3389 like above and another allowing svchost?
It seems I can create 1 rule, under Application rules for Svchost.exe from any host, to port 3389. Then my Global rule isn't necessary. So, what's the point of the global rule?