Simplewall-Firewall

Discussion in 'other firewalls' started by co22, Oct 25, 2016.

  1. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    How can you stop responding to pings?
     
  2. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    392
    Location:
    united kingdom
    If you add the following User rule to Simplewall it will block ICMPv4 ping requests coming from any remote source address to your machine:

    icmp_ping_block_rule_for_simplewall.png
    I've enabled the rule only for the System process , but you can apply the rule to all apps/processes if you want to, by selecting Enable rule (for all).

    HTH
     
  3. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Thanks Askmark. Still working on it. I assume you tested it. I am seeing ping requests answered.

    How is that local rule number determined?
     
    Last edited: Jun 28, 2018
  4. askmark

    askmark Registered Member

    Joined:
    Jul 7, 2016
    Posts:
    392
    Location:
    united kingdom
    Sorry to hear it's not working.

    Prior to posting, I tested the rule between a Windows 10 PC and a Windows 8.1 PC, both on the same network.

    You need to make sure the Remote IP address in the rule is exactly "0.0.0.0/0" (the final "/0" is vitally important). If it still doesn't work, then you can replace "0.0.0.0/0" with just "0". I'm not sure but I believe 0 means any port to Simplewall.

    The local rule number represents port 8, which is an ICMP Echo Request. Technically, ICMP use types and not ports, but for firewall purposes, ports appears to work for ICMP rules in Simplewall.
     
  5. Peter2150

    Peter2150 Global Moderator

    Joined:
    Sep 20, 2003
    Posts:
    20,590
    Not gotten working yet, but not sure it's all that big a deal. Thanks again for your help. Pete
     
  6. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    I'm trying out Simplewall 2.3.2 on Windows 10 x64 Educational version 1703 in Virtualbox. When I click on load on system startup in Simplewall settings, Simplewall feezes, and stops responding for around 20 seconds.
     
  7. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    I thought Simplewall was a shell for Windows Firewall, but Windows reports that Windows Firewall is disabled, and Simplewall is doing the filtering. Does Simplewall have it's own packet Filter driver?
     
  8. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    Well, the first post of this thread says Simplewall uses WFP so I guess Simplewall is just not integrating right with Windows Security Center on my version of Windows.
     
  9. Eru

    Eru Registered Member

    Joined:
    Mar 23, 2010
    Posts:
    108
    Location:
    Poland - Sosnowiec
    Here u have the answer:
     
  10. guest

    guest Guest

    simplewall v2.3.3 (8 July 2018)
    https://www.henrypp.org/product/simplewall
    Download
    Changelog
    sha256 checksum
     
  11. Fad

    Fad Registered Member

    Joined:
    Feb 25, 2009
    Posts:
    456
    Location:
    England
    Thanks Mood....I get the update alerts here first rather than the internal updater ! ;)

    NB: 2.3.3 automatically adds back several 'system' rules by default, so be sure to go in there and check if there`s any you don`t want active.
     
  12. co22

    co22 Registered Member

    Joined:
    Nov 22, 2011
    Posts:
    411
    Location:
    router
    and several service blocked by default in blocked apps
    thanks for update:):thumb:
     
  13. Fad

    Fad Registered Member

    Joined:
    Feb 25, 2009
    Posts:
    456
    Location:
    England
    I see those blocked services but don`t understand the reasoning behind having them hardcoded (they cannot be deleted)

    I don`t even have some of those services installed - so essentally GUI littering.

    I should be able to delete them IMO
     
  14. co22

    co22 Registered Member

    Joined:
    Nov 22, 2011
    Posts:
    411
    Location:
    router
    i don't mind they will be there as long as blocked:)
    in system rules thera are DHCP and DNS(ticked) but also i see them in new service blocked apps rules
    not sure whats different
     
  15. Fad

    Fad Registered Member

    Joined:
    Feb 25, 2009
    Posts:
    456
    Location:
    England
    I think they are "blocked" so to lock them down - they (specifically) are both functions of svchost and you don`t really want to give that free rein to do what it likes...

    the rules allow only the bare minimum needed [ports in & out] to ensure functionality is kept. (I think that`s what`s going on there)
     
  16. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    Apparently it does not use a driver, but it does work differently when compared to TinyWall and WFC. Do you like this app so far? I'm thinking about trying it, because I found out that WFC rules can be wiped out, and this shouldn't be the case with SimpleWall.
     
  17. Cutting_Edgetech

    Cutting_Edgetech Registered Member

    Joined:
    Mar 30, 2006
    Posts:
    5,694
    Location:
    USA
    I was having some problems with it, but I don't remember exactly what they were now. I was testing it in a VM. I do remember that it annoyed me because I received a UAC prompt at boot time asking if I wanted to allow Simple Wall to run.I received it each time I booted.

    When I first installed it I thought it was working right away, but when I rebooted the tray icon changed indicating that it was active now. I didn't realize it was not active when I first installed it because it did not say I needed to reboot.

    At the present time it's not for me, but it may be in the near future. For now I will continue using Eset's Firewall, and hope they care enough about their firewall to make some long overdue needed changes to it. I've been hoping for about 4 years now so I want hold my breath.
     
  18. __Nikopol

    __Nikopol Registered Member

    Joined:
    Aug 13, 2008
    Posts:
    630
    Location:
    Germany
    I am using it for a month now. It is actually pretty good.
    Though, on my end it has an issues where it spams the blocked-packets log and the adapter with a port-scan like behavior. It wants to connect outside using IPv6 (I think) but that is disabled. It uses DNS querys over UDP. This mostly happens when I am connected to a VPN.
    I asked the developer, but I did not get a sufficient answer yet. He said to configure OpenVPN with "block-outside-dns" in the .ovpn files, but that did not help the issue.
    Right now you can stop this behavior if you deny the rule for simplewall.exe in itself.

    HOWEVER: I see that chrome.exe is also doing this. So it might not be an issue with Simplewall at all. (PC is clean, no malware)
     
  19. __Nikopol

    __Nikopol Registered Member

    Joined:
    Aug 13, 2008
    Posts:
    630
    Location:
    Germany
    You can disable the UAC prompt when you check "Skip User Account Control warning" in simplewalls settings. Then it will start using task scheduler which does not need to prompt you.
    You don't need to reboot to activate it, usually. Just click "Enable Filtering" and let it disable windows firewall.
     
  20. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,546
    Location:
    The Netherlands
    OK thanks for the feedback, not sure if I will try it.

    This sounds a bit weird, I think I had the same issue with Comodo, that was reason enough for me to dump it.
     
  21. Cantos

    Cantos Registered Member

    Joined:
    Aug 2, 2018
    Posts:
    1
    Location:
    Canada
    Anyone else having trouble with this firewall and Microsoft Word? To be more specific, I get an error message loading Word when trying to open a document unless I toggle the firewall. After that, it's fine until I reboot. Word is not blocked in the firewall.
     
  22. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,319
    Location:
    Viena
    This tool is awesome, and its open source, why is this not more popular?
     
  23. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,796
    Location:
    .
    So it won't go same fate as WFC. Acquired by a $$$ Huge Company $$$.
     
  24. DavidXanatos

    DavidXanatos Developer

    Joined:
    Sep 6, 2006
    Posts:
    2,319
    Location:
    Viena
    Well its GPL code, acquiring it wont take it away from the public anyone will be able to continue the project
     
  25. Mr.X

    Mr.X Registered Member

    Joined:
    Aug 10, 2013
    Posts:
    4,796
    Location:
    .
    @henrypp What's going on with development? Have you stopped?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.