Advanced Security and port forwarding
I have set up several port forwards. For over three years they have worked, and since I use non-standard ports I have not had problems with port scanning or unauthorized attempts on my computers. When my computer was set up to use standard ports for my work IT department, Comcast refused to assist in blocking unauthorized attempts to connect causing internet slow down, and refused to release my DHCP lease so that I would get a new IP. The modems software also does not allow port redirecting, which forced me to alter the servers to use a new port. Some software does not allow this, like games.
Recently, Comcast has graciously given customers free use of their "Advanced Security" firewall, which greatly secures the internet connection. I get too many notifications that computers are attempting to connect to malicious sites, spam sites, and reputation issues. Way too many. I also get notifications when I attempt to connect to my home through a port forward, as the security doesn't allow me a connection unless I authorize the IP. Since my cloud IP's change with each connection, this means I have to authorize every attempt at connecting. And then the initial connection fails and I have attempt a second time. Oh, and don't forget that it is secure for the xFi app to connect from the internet, that it is not blocked by the Advanced Security even though everything it uses is what I use, except that it only connects to the modem to bypass all the security features that I use.
One of the games I play is a multiplayer game which requires connection to a private host/server, which is mine. I paid for the license, the other players do not have to. And don't want to. Every time they attempt to connect, it fails. Then I get a notification telling me it was unauthorized. Wait, my server is on a non-standard port and they had to know it to attempt to connect, how is it unauthorized? I then have to navigate the confusing app, clicking on the small explain the problem link instead of the big "Help Me Fix" button. Very confusing as the Help Me Fix demands that I get rid of the port forward. This does not fix the problem of them connecting to me. And the Help Me Fix doesn't offer authorize connection options, it assumes we don't want to authorize.
So, basically if I'm attempting to connect to something on my intranet, like my printer, that I wouldn't do normally, I want the notification and auto-deny. Then I can authorize it, If I have set up the port forwards, I know the risks and have authorized it, so let me connect without having to authorize. And if you are worried about the "common,"
customer, give the advanced user the option to opt-in to automatically authorizing the forwarded ports and deny the rest.
PS: I had to remove the lables of "Advanced Security, Advanced Security Failures, Advanced Security Authorization" because your web page coding implies I don't know what I'm doing and doesn't want it flagged for what it is. Why do you offer the option to type something in there is you are just going to deny the use? I am now applying all available labels.