Guard your trusted internal network against infiltration from untrusted external sources.

A strong security posture needs smart perimeter protection.

Maintaining day-to-day operations—and growing your business—requires network traffic to constantly flow into and out of your internal network. A lot of that traffic is trusted. But much of it isn't, and you need to be able to distinguish between the two. Comodo Dome Firewall is a unified threat management system that helps to secure all ports and protocols and delivers a host of security controls.

Comodo Firewall is available in two versions: free and full protection.

Key capabilities

  • Certification: Rest easy knowing that the Comodo Dome Firewall is Common Criteria EAL 4+ certified, which is verified by vendor-neutral, third-party laboratories.
  • Central management: Manage all of your Comodo firewalls with a centralized management portal. download now
  • Advanced protection: Defend against malware, phishing, and botnets at the gateway with real-time threat intelligence.
  • Flexible deployment: Easily upgrade from the free version to full protection with no re-installation required.

When is a firewall not just a firewall? When it's a unified threat management virtual appliance. Comodo Dome Firewall doesn't just deliver protection for all ports and protocols—it offers a host of other security features along with centralized management.

Unified firewall

Comodo Dome Firewall uses stateful packet inspection to secure all ports and protocols. You can create rules based on user, group, source, destination, MAC and IP, and schedule to control inbound and outbound traffic.

Gateway security

Protect against malware (signature-based), phishing, and botnets at the gateway. The Full Protection version also provides zero-day malware protection with static and behavioral analysis at the gateway along with Comodo's patented auto-containment for unknown files.

Content filtering

Block URLs by category or by custom domain categorization. You can set web filtering policies by user, group, zone, or time for flexibility and control.

Networking

Comodo Dome Firewall delivers a wide range of network management tools, including VLAN management, DHCP, virtual IP routing, NAT, ICAP, WAN failover, and zone management.

Intrusion prevention

Block URLs by category or by custom domain categorization. You can set web filtering policies by user, group, zone, or time for flexibility and control.

VPN

Comodo Dome Firewall delivers a wide range of network management tools, including VLAN management, DHCP, virtual IP routing, NAT, ICAP, WAN failover, and zone management.

Features

Not sure which version of Comodo Dome Firewall is right for you? Compare features—and see how they stack up against other firewalls on the market.

Features Free Firewall
Download now
Full Protection Firewall
Try It For Free
Endian pfSense IPFire
Central management          
Manage multiple firewalls
Organization- and device-based management
Remote management
Security features          
Static and behavioral malware analysis at the gateway
Zero-day malware protection
Automated unknown file containment
Portable containment technology
Manual human-based malware analysis at the gateway
Signature-based antimalware at the gateway
Phishing protection
Real-time threat intelligence
Botnet protection (block callback attempts of infected endpoints)
Application auto-whitelisting
Certification          
Common Criteria EAL 4+
Content filtering          
Category-based URL filtering (block URLs by category and custom blacklists) Comodo web filtering database with live updates Comodo web filtering database with live updates Open source manual updates Open source manual updates Open source manual updates
Domain categorization feed updates Every 2 hours Every 2 hours n/a n/a n/a
HTTPS interception (analysis of encrypted HTTPS traffic)
Source-, destination-, schedule-, and user-based rule management
Firewall          
Unified policy management
Stateful packet inspection firewall
Source-, destination-, service-, port-, IP-, and FQDN-based traffic blocking
Source-, destination-, service-, port-, IP-, and FQDN-based traffic blocking
Networking          
Source- and destination-based NAT support with masquerading
Zone-based management supporting multiple LANs
NAT, PAT, routing, ICAP support
Virtual IP management
Intrusion prevention          
Category-based IPS signature database (block intrusion attacks with granular policies by category)
Real-time updates (weekly addition of new IPS signatures to database)
Support for custom IPS signatures
Virtual private network          
Site-to-site VPN
Client-to-site VPN
Support for IPSEC, L2TP, SSLVPN, and GRE tunnels
Active Directory authentication
Management          
Simple web-based management interface
User-, group-, and time-based rules
Active Directory integration
Role-based access control rights to management interface
Bandwidth management          
Service-based traffic prioritization
TOS/DSCP-based controls
Quality-of-service-based bandwidth allocation
Download now Try It For Free