thanks "codyqx4" for useful guide i did it and seems to me that everything is working as it should just a few questions as i am new to firewalls if you don't mind. 1. i see quite a lot through the thread chatter about blocking svchost.exe and opening just a few ip's what i want to know is when i create a rule that allows svchost.exe with a ip address that it will block the full svchost.exe except the ip address i inserted? in short is a allow rule with an ip really a block rule to everything except that ip? 2. this might be a dumb question (or is a dumb...) what's the difference between inbound Vs. outbound does a download manager need an inbound rule to allow downloading? 3. what the difference between remote ip and local ip? i understand that these questions are ignorant questions but i really want to learn... thanks in advance.
1. Create a rule to deny communications for svchost for every ip. Then whitelist an ip with a new rule. 2. Your software uses outbound rules to communicate with remote ips. You dont usually need inbound rules unless you have software listening on some ports. If you use torrents, if you are hosting ftp server, http server, etc, then you need inbound rules to allow access on the ports on local ip. 3. local ip is you, remote ip is the ip that software needs to access. Ex of rule: - Lets say you want to block svchost outside access to all ip and allow it to access 1 ip create 2 rules 1 rule: Block svchost.exe on all profiles Public, Private, Domain, Protocol ANY, Local Address ANY, Remote Address ANY, Service ANY, Direction OUTBOUND, All Interfaces 2 rule: Allow svchost.exe on all profiles Public, Private, Domain, Protocol ANY, Local Address ANY, Remote Address 192.168.10.1, Service ANY, Direction OUTBOUND, All Interfaces That's just an example, in real life you cant block svchost like that, incoming and outgoing connections because its needed for dns, time sync, dhcp and basically alot of other things.
thanks "acky" for the reply i have just one more question i understand that the settings "codyqx4" showed for the firewall is basically a whitelist firewall so why when i check my connections log i see some programs connecting when i never created a rule for them? thanks in advance
Someone seems to have ripped-off your guide with mentioning your name (no_short_urls_allowed/ppwxkmd)
CODYQX4 or other fellow members kindly help me. I have two questions about this. 1- Should I copy paste the registry in powershell? 2- How to know which IPs would work for me?
Then you should start to get the point ...... eventually of what windows 10 is however on every thread you defend it over and over again indicating M$ or the US government has no interest in probing your system however with Daz and CODYQX4 saying different we all trust what you say, your the man. You r obviously some sort of fear driving fan boy ..... I have never blocked anyone on this site but you may be the first. Do your really think that most here care if we break the system while we learn? gag Regards Edit: Got it .... from the ground up thank u Cody for helping us learn
^^^ Are you the author of this? Thankz for members such as you. Service (local): Windows Firewall Control extends the functionality of Windows Firewall and adds new features which help you to protect your computer. I export the settings through M$ and then WFC and the hashes are different, why is that? Both import back thru M$. WFC GUI is clean and informative, I like auto delete, maybe M$ wants to confuse or they have something to learn from WFC . Thanks go out to MTK for the op push in the right direction. I guess if we just wipe everything and add presets core net we have a starting point . Regards
Blocking people is a really good idea, especially if you don't agree with them. I can't help what you think, and you can't help what I think. So go ahead, the earth is flat, and MS, and the US Government are spying on you! Block me.
Except we have evidence that indisputably proves that the Earth is a sphere, MS shares data with the US Government, and that the US Governments conducts domestic surveillance. You've buried your head in the sand and gone full anti-vaxxer. Never go full anti-vaxxer.
Truly it blocked everything. It also blocks File and Printer sharing. Anyway to allow File and Printer sharing?