On the gaming rig I setup the Vista FW two ways, using Stem's excellent posts.

Because I am bit lazy I always used to install Vista FW control on the x64 machine and just wrote down what to allow manually in Vista's own FW and de-install Vista FWC

I had to allow a new program with lots of execs in its directory so I re-installed Windows & firewall control (the next version) on Vista x64. To my surpirse the initial delay in VFWC icon pop-up and use of the internet is now gone. With Vista FW control the 'after boot availability' is as fast as without it.

So the freebie has become better.

Hi，Kees~
Do you mean the free version of FWC x64 in OS win7 works fluently?;) But the absence of functions(compare to the paid version) makes me annoying cause some of them are desired for me:-\

-{ Quote: "
Hi，Kees~
Do you mean the free version of FWC x64 in OS win7 works fluently?;) But the absence of functions(compare to the paid version) makes me annoying cause some of them are desired for me:-\" }-

No sorry the new named Windows 7 Fiorewall control 'releases' the system faster on Vista x64 now at initial boot.

I'd like to use windows7 firewall control. But I find it a little ridiculous when there are so many excellent free firewall to use,you'll have to pay for a full function Windows firewall control software. Isn't it? :-\

Bonedriven,

The freebie also works fine, only with limited options.

I use it to write down the programs which need outbound connections etc. It uses the Vista FireWall. Then I de-install Windows 7 Firewall control. Next I use Stem's post to manually allow the programs listed in Windows 7 firewall control. See http://www.wilderssecurity.com/showthread.php?t=239750&highlight=Vista+FireWall+Stem

Result: a fast and solid 2-way FW on Vista (certainly on x64 it runs very smooth)

Regards

-{ Quote: "Bonedriven,

The freebie also works fine, only with limited options.

" }-

Hi, I am currently trying W7PrivFWCntrl. for application control.

To my surprise I have noticed that the UNREGISTERED plus version has more readily available features than the free version (such as a wide variety of zones, the freebie only has enable/disable/in/out). Registration unlocks further advanced features.

-{ Quote: "Hi, I am currently trying W7PrivFWCntrl. for application control.

To my surprise I have noticed that the UNREGISTERED plus version has more readily available features than the free version (such as a wide variety of zones, the freebie only has enable/disable/in/out). Registration unlocks further advanced features." }-

Good tip, do these extra sustain after trial period (if any trial that is)

-{ Quote: "Good tip, do these extra sustain after trial period (if any trial that is)" }-

There is no mention of an expiration date. It does ask for registration info randomly and whenever ones tries to use advanced features (such as editing zones)

-{ Quote: "But I find it a little ridiculous when there are so many excellent free firewall to use,you'll have to pay for a full function Windows firewall control software. Isn't it? :-\" }-

Not for x64 :(

One oddity. I use the free version in Win 7 RTM. The Windows security center shows Win7FirewallControl as turned on, and Windows Firewall as turned off. I though that this is just a front end to the windows firewall and, as such, should not report itself as an actual firewall. Is this just a reporting problem, or is the firewall actually turned off (not a good thing, I would think).

Doesn't uninstalling Win7FireWallControl defeat the purpose of having this program. My main reason is to warn me if any programs that I did not knowingly install are trying to go out to the internet (e.g., malware that I downloaded), and to enable mis to block it. Doing what you say seems to be fine as far as telling windows what to allow initially, but does nothing to let you block anything after.

-{ Quote: "Bonedriven,

The freebie also works fine, only with limited options.

I use it to write down the programs which need outbound connections etc. It uses the Vista FireWall. Then I de-install Windows 7 Firewall control. Next I use Stem's post to manually allow the programs listed in Windows 7 firewall control. See http://www.wilderssecurity.com/showthread.php?t=239750&highlight=Vista+FireWall+Stem

Result: a fast and solid 2-way FW on Vista (certainly on x64 it runs very smooth)

Regards" }-

-{ Quote: "Doesn't uninstalling Win7FireWallControl defeat the purpose of having this program. My main reason is to warn me if any programs that I did not knowingly install are trying to go out to the internet (e.g., malware that I downloaded), and to enable mis to block it. Doing what you say seems to be fine as far as telling windows what to allow initially, but does nothing to let you block anything after." }-

You set Vista or 7 firewall to block all inbound/outbound not matching a rule. Any programs you install will not get through unless you create a rule.

Do these rules have to be created manually, or does the user get a prompt asking him/her to enable inbound/outbound in the same way the the Firewall Control program does?

-{ Quote: "Do these rules have to be created manually, or does the user get a prompt asking him/her to enable inbound/outbound in the same way the the Firewall Control program does?" }-

Windows will already have some rules created for you, you will have to do the rest. No prompts unfortunately. It is pretty easy to set up. Here is a link to a thread that Stem (firewall moderator) started about Vista firewall with advanced security, I think, but don't know for sure that Win7 is the same setup.

http://www.wilderssecurity.com/showthread.php?t=239750&highlight=vista+firewall+advanced+security

I'm not sure what this procedure buys over Firewall Control, at least for the basic inbound/outbound permissions. I can see where one would have to use Windows Firewall for setting up port forwarding...etc., but why would I want to go through all of the steps for each app when FirewallControl prompts me and sets up the rules for me.

-{ Quote: "I'm not sure what this procedure buys over Firewall Control, at least for the basic inbound/outbound permissions. I can see where one would have to use Windows Firewall for setting up port forwarding...etc., but why would I want to go through all of the steps for each app when FirewallControl prompts me and sets up the rules for me." }-

I am not arguing for either way. I was just posting that you can have full control with Vista/7 firewall if you want.

It doesn't take long to set up the rules. Vista made the rules for core networking and network discovery. I only have a couple of programs that I made rules to let through. I have windows services created in one or two rules. That's about it, unless one is installing new programs all the time that need outbound access, otherwise your done. It really isn't much trouble. With that said it is nice to have a 3rd party firewall prompt you, then the rule is created automatically. My browsing speed is noticeably faster when I just use Vista firewall. Although with my machine specs I am not too concerned with overhead, I still try to keep it lean and start ups to a minimum. You don't have worry about any conflicts with your av either.

Gotcha.

I have a fast (FIOS) internet connection, so browsing speed is not really an issue for me.

Actually, I have a subscription to Norton Internet Security 2009 and am just waiting for them to come up with a workable patch for Windows 7. Once I get that, I will uninstall, or at least disable the firewall control program - this is just a stopgap. But it will be nice to know it in case I get a 4th PC that needs protection (NIS only supports 3 on one subscription). Part of my current setup is a second partition that still has the Win 7 RC on it an on which I am able to run NIS (don't ask - I have no idea why it works on that but not on the RTM). Once I get NIS working for the main O/S, I may try and play with the Windows Firewall settings - it never hurts to learn something new.

Thanks for you help.

-{ Quote: "It doesn't take long to set up the rules. Vista made the rules for core networking and network discovery. I only have a couple of programs that I made rules to let through. I have windows services created in one or two rules. That's about it, unless one is installing new programs all the time that need outbound access, otherwise your done. It really isn't much trouble. With that said it is nice to have a 3rd party firewall prompt you, then the rule is created automatically. My browsing speed is noticeably faster when I just use Vista firewall. Although with my machine specs I am not too concerned with overhead, I still try to keep it lean and start ups to a minimum. You don't have worry about any conflicts with your av either." }-

Ok - let's say that I have now set up all of the rues that I need (using the rules from Firewallcontrol as my base). I now install a new program that has an automatic update feature. Since I don't have a rule for this, I would expect it to fail when it tries to update. How will I know what Program I need to create the rule for? Is there a log that I can look at to the the firewall blocking the update attempt?

Also, when entering a path, is there any reason that I would use %program files%\ instead of c:\program files\?

-{ Quote: "Ok - let's say that I have now set up all of the rues that I need (using the rules from Firewallcontrol as my base). I now install a new program that has an automatic update feature. Since I don't have a rule for this, I would expect it to fail when it tries to update. How will I know what Program I need to create the rule for? Is there a log that I can look at to the the firewall blocking the update attempt?

Also, when entering a path, is there any reason that I would use %program files%\ instead of c:\program files\?" }-

The following quotes are from this thread http://www.wilderssecurity.com/showthread.php?t=239750&highlight=vista+firewall+advanced+security

-{ Quote: "Hi Stem,

Thanks for the guide.

I just hope I don't get disc by changing to block outbound connection. I'll try it later.
Is vista's firewall log clear enough for me to figure out what rule I need to add if something doesn't work any more?" }-

-{ Quote: "Hi bonedriven,

You should be OK. Just take your time. Set up your browser rules first, as shown earlier in the thread, then set all policies to "block all outbound", and set the logging to log any blocked packets.
Blocked packet will show the protocol, local/remote IP/Ports, so rules can be made. If you do have problems, then just go back to allow all outbound and post info on what application cannot connect and the log details.

There is a bit of a learning curve, but as I mentioned earlier, most updater's usually only require outbound TCP remote port 80, so that is a starting point for most applications.



- Stem" }-

I should have posted private profile pc and not domain.

-{ Quote: " Also, when entering a path, is there any reason that I would use %program files%\ instead of c:\program files\?" }-

I think you can, I have not done it, I just browse to it.

Hi there.

Since there's no part in Windows 7 Firewall Control (at least in the free version) to restrict outbound connection rules (ports, etc) for each application, I prefer Windows built-in firewall. It gives more protection.

Btw, the built-in firewall prompts user for inbound attempts, but not for outbound. In this case the log file may help (I haven't taken a look at there though). For those who think that creating rules is a big and hard work, they can first install W7 Firewall Control temporarily and run all the applications that need internet connection. Then the rules can be created in the built-in firewall with those application paths (some protocol and port restrictions -which Stem's also mentioned on the Windows Firewall Advanced Security posts- may improve the security). For me, it's quite easy to find the relevant files and create rules manually.

-{ Quote: "Hi there.

For those who think that creating rules is a big and hard work, they can first install W7 Firewall Control temporarily and run all the applications that need internet connection. Then the rules can be created in the built-in firewall with those application paths (some protocol and port restrictions -which Stem's also mentioned on the Windows Firewall Advanced Security posts- may improve the security). For me, it's quite easy to find the relevant files and create rules manually." }-

Yep difficult or plain lazy, see first post ;D

-{ Quote: "
Because I am bit lazy I always used to install Vista FW control on the x64 machine and just wrote down what to allow manually in Vista's own FW and de-install Vista FWC
" }-

Antivir flagged this as a trojan when I tried to install it. I use Online Armor Premium on my Vista and XP machines. I'm usually behind a firewall router when I'm at home. I thought I could install the free or unregistered Windows7 Firewall version and use Mamutu for screening unknown programs/behaviors.

Having the firewall control would eliminate some of the drag caused by a more complete firewall. I have a couple of more months until Amazon.com ships Windows 7 to my front door. I haven't experienced a rogue program invading my system and probably wouldn't have a clue if it did.

Not sure where you got it. I have Avira and WIn 7 firewall installed. Get it from the source.

I have one big question about WindowsFireWallControl:

I tried it but it wont set the rules to the Windows Firewall.
It sets it's own rules but wont lend them to the windows firewall!

If i install FC and try to connect to icq it promps for action. If i allow the outgoing traffic every thing works fine but there is no rule created in the windows firewall. I can also block icq by block all outgoing traffic within the windows firewall. Even if i have an allow rule set in FC.

I think FC use the same network adapter but you can shut down the hole Windows firewall including the service and it will run probably. So it is a stand alone Firewall and no control center for the windows firewall. That is really distressing cause i would like to use the windows firewall.
Is there no ****ing way to get a simple popup on outgoing connections like it is set up for incoming ones? That has to be possible!

-{ Quote: "I have one big question about WindowsFireWallControl:

I tried it but it wont set the rules to the Windows Firewall.
It sets it's own rules but wont lend them to the windows firewall!

If i install FC and try to connect to icq it promps for action. If i allow the outgoing traffic every thing works fine but there is no rule created in the windows firewall. I can also block icq by block all outgoing traffic within the windows firewall. Even if i have an allow rule set in FC.

I think FC use the same network adapter but you can shut down the hole Windows firewall including the service and it will run probably. So it is a stand alone Firewall and no control center for the windows firewall. That is really distressing cause i would like to use the windows firewall.
Is there no ****ing way to get a simple popup on outgoing connections like it is set up for incoming ones? That has to be possible!" }-

Nope,

You have to manually copy the Win7FW entries to the Win7 FW like stem pointed out. Later on remove Win7 FW cntrl

the last version i tried, think it was vista firewall control had a REALLY annoying little popup kinda thing in the bottom corner of my screen for every connection and it basically stayed ther, does the Win7 version still have that or can it be disabled somehow?

-{ Quote: "the last version i tried, think it was vista firewall control had a REALLY annoying little popup kinda thing in the bottom corner of my screen for every connection and it basically stayed ther, does the Win7 version still have that or can it be disabled somehow?" }-

Can be disabled, Win7FWctrl loads also a lot faster on x64 than VistaFWctrl