Windows Firewall Control (WFC) by BiniSoft.org

Discussion in 'other firewalls' started by alexandrud, May 20, 2013.

  1. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,102
    Location:
    Lunar module
    Thank. No problems noted. Not a perfectionist, but I've been trying to find a sha256 91d... :D It's not a problem, just information. And 1px left 1px down.
    sha.png 1p.png
     
    Last edited: Feb 15, 2023
  2. AmigaBoy

    AmigaBoy Registered Member

    Joined:
    Sep 12, 2015
    Posts:
    205
    On the online changelog.txt, version 6.9.1.0 is mentioned. There's no 6.9.2.0. Probably a typo.
     
  3. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    The SHA256 for version 6.9.2.0 is 548214adb293b8e42fa26bd3ca91d558d21435eeb39fa4b3576a0d053c3ac757. For the keyboard focus default template, that one comes from default WPF. It will get updated/fixed when dark mode will be added to WFC, sometime in the future.
    There was version 6.9.1.0 for a few hours but I updated it again to 6.9.2.0. when I realized that I forgot to add one line of code when building version 6.9.1.0. So, I added the line and created 6.9.2.0. The changelog is the same for both releases.
     
  4. Alpengreis

    Alpengreis Registered Member

    Joined:
    Oct 7, 2013
    Posts:
    670
    Location:
    Switzerland
    @alexandrud

    Just with a (fast) double click on the Tray Icon. It's not always the case but it happens. Note: it's only if the GUI is not already open - IF the GUI is open, it seems not possible to open it a 2nd time. Also it seems the only Tray Icon with this behaviour.

    MAYBE it's my AV scanner which interferes or so (slows down the opening process?) ... I don't know.

    MAYBE it could be related to PC rebooting because if I can reproduce it (a few times perhaps), it seems after no more possible - till next reboot. So it COULD be a cache thing or so (too).

    Not a big deal but maybe you can adjust something.

    PS: Dark mode sounds good :)
    PPS: Thank you for new version!
     
    Last edited: Feb 15, 2023
  5. Rapids

    Rapids Registered Member

    Joined:
    Feb 15, 2023
    Posts:
    5
    Location:
    Milan, Italy
    Windows11,Defender UI, vodooShield, Malwarebytes Windows Firewall Control 6.9.2.0

    I am very glad to be signed back here at Wilders after many years of just reading it.

    My question is a simple one,but I was apparently unable to create a rule that WFC would accept:
    what kind of rule can I make in WFC to prevent other computers connected to a second wireless router from communicating with my main one,which is on a different subnet and ethernet connected?

    Connection is Public, File and Printers Sharing disabled, Network discovery disabled and the wireless computers get connected as Guest in the router.

    Usually i think these few things would be enough,but I'd like to be protected from 'contaminations' from LAN devices by WFC,too.

    Anyone please?
     
  6. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,102
    Location:
    Lunar module
    Deny connections in the local network.
    Create a deny rule that applies to all programs (do not specify a program in it): outgoing, ANY protocol, all ports, in the line "Remote addresse..." type only one keyword - LocalSubnet (case-sensitive), without specifying any addresses in numbers.
    A similar rule for incoming connections.

    Or create a deny rule which applies to all programs (do not specify the program in it), specify the range of IP-addresses of your local network in the line "Remote addresse...", for example 192.168.0.1-192.168.0.255.
    The same rule for incoming connections.

    Or prohibit incoming TCP connections on incoming ports 139,445.
     
  7. kC_

    kC_ Registered Member

    Joined:
    Apr 6, 2007
    Posts:
    580
    loving wfc... have tried many different tools all doing different things (glasswire/voodooshields rules/firewall hardening as well as trying to stay on top of windows firewall manually..... wfc really makes it all simpler clearer, easier... the only interface and set of groups/rules needed....love it!)

    really dig the authorised groups, and how i can set any unauthorised groups to disable or remove the rules...

    question:
    is it possible to add a simple filter to see only blocked or only allowed rules? as it is right now, it seems i can only filter by inbound/outbound/enabled/disabled/user created

    question 2
    an option that by when opening the rules you can expand/minimise grouped items (e.g default view of only show groups with an optional expand menu)

    it sometimes feels a bit slow/laggy with many rules, id like to easily and simply be able to only show/hide x group with a simple option to expand any group, some groups contain many items that i never need to see again (lobins/telemetry etc)

    fantastic work though, ive never felt as in control of windows firewall/groups and random apps that add stuff



    upload_2023-2-15_22-48-48.png
     

    Attached Files:

    Last edited: Feb 15, 2023
  8. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    Windows Firewall blocks by default any inbound connection to your machine, unless you create an inbound allow rule (or from default Windows Firewall rules) to allow specific connections. Just disable/delete any inbound rules that you have and you are set. Your machine will be invisible in the network since all requests to it will fail because you don't allow any inbound connection. Inbound connections are required usually for server applications (email, databases, etc) and locally on your machine if you want to reach to it from outside, from a second device for example.
     
  9. Rapids

    Rapids Registered Member

    Joined:
    Feb 15, 2023
    Posts:
    5
    Location:
    Milan, Italy
    Thank you aldist, most kind of you to suggest the right rules in detail, i'll try them asap.

    ps: and thanks to alexandrud (I saw your post after I had already replied to aldist) who clarified the concept behind WFC towards all inbound connections.
    Obviously I have to believe in what you say,but I will apply some aldist suggestions nonetheless, if nothing else just to note any changes.
     
  10. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    This is possible only if you sort the data grid by the Action column. Click on Action column header to sort ascending/descending.
    This is harder to achieve with the default data grid control from WPF. It is not impossible, but it requires a lot of coding behind the scene. I did not want to include 3rd party controls (which have this functionality by default) because the size of WFC would have increased at least 10 times. But I will put this request in the backlog, it is an interesting one.
     
  11. kC_

    kC_ Registered Member

    Joined:
    Apr 6, 2007
    Posts:
    580
    thanks! nice work!
     
  12. Rapids

    Rapids Registered Member

    Joined:
    Feb 15, 2023
    Posts:
    5
    Location:
    Milan, Italy
    I tried to make a rule like the first/second you suggest,but i am utterly unable to create them as the button 'create' is inert, WFC wont accept it. The only rule inbound that WFC accepted was this one,which was in place since a month:

    PROGRAM - Al Programs
    NAME router name
    GROUP WFC
    DESCRIPTION -Inbound rule to block router2
    LOCATION -Domain,Private,Public flagged
    PROTOCOLS&PORTS - any
    LOCAL PORTS- -
    REMOTE PORTS- -
    LOCAL ADRESSES - IP of my main pc
    REMOTE ADRESSES - IP of router2 in Router1 range/numbers
    SERVICE - apply to all
    DIRECTION - inbound
    ACTION - BLOCK
    INTERFACE - Local Area Network

    But let me tell you that after alexandrud post I am less interested now, especially after an inspection at inbound rules in the windows firewall, which are all completely on the BLOCK side of things, as alexandrud implied.

    The aforementioned rule i made is listed in the advanced properties of the firewall,but i tend to think its more redundant than effective.

    What prompted my quest was the fact that if i run Advanced IP Scanner or Lanytix from my main pc,which is directly connected to router1 and the fiber, i can see listed with an IP given by router1 DHCP also the (wireless) router2 among the detected devices.

    With the few 'hardening' measures i took and the fact ALL inbound packets are discarded I think I can feel ok and my problem is thus solved.
     
    Last edited by a moderator: Feb 16, 2023
  13. SeriousHoax

    SeriousHoax Registered Member

    Joined:
    Mar 27, 2019
    Posts:
    99
    Location:
    Bangladesh
    I was testing out Windows Firewall Control after a long time. But if I try to connect Cloudflare Warp, I get over 300 blocks like this. Cloudflare is already allowed. As you can see, these blocks are coming from "System". What should I do?
    1.png
     
  14. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    Do nothing. I just installed Cloudflare Warp on my machine, I connected to it, I received 2 notifications which I allowed:

    upload_2023-2-17_21-39-58.png

    Then I was connected probably to the closest and fastest Cloudflare server next to my location. When checking my IP, I am connected to Cloudflare ISP instead of my real ISP. It seems that it works as expected. I also got 218 blocked connections for System, which I just added in the notifications exceptions list and now I won't be bothered anymore with notifications for System.
     
  15. SeriousHoax

    SeriousHoax Registered Member

    Joined:
    Mar 27, 2019
    Posts:
    99
    Location:
    Bangladesh
    Thanks. I just came here to delete my comment but I see that you have already tested by yourself. I think I have found the issue. I'm also using Adguard Home on my PC and on Windows setting 127.0.0.1 was my DNS. This is what was causing the issue. It's possible to set other address as DNS also that works in Adguard Home. After changing, I was able to connect to Warp.
    But for some reason I can't connect to F-Secure Freedom VPN even after disabling Adguard Home and using 1.1.1.1 or 9.9.9.9 as the DNS.
    It's okay if you can't test this one, as it's a paid VPN. In that case, I'll see if I can find what's going on.
     
  16. TestPersonX

    TestPersonX Registered Member

    Joined:
    Jul 13, 2009
    Posts:
    39
    Location:
    Germany
    Hi all,

    is there a way to exclude a specific folder / application from being managed by the Windows Firewall or at least define an AllowRule via Wildcard?

    Reason:
    Microsoft OneDrive (which I do use and cant deactivate) keeps updating itself in the background and therefore, previous rules do not apply anymore. Hence, with every update every few days, the same outgoing rules have to be defined over and over again, really annoying.

    This is how the folder looks like - clearly the version is in the path to the executable and therefore new rules are required :(
    upload_2023-2-23_9-4-47.png
     
  17. AmigaBoy

    AmigaBoy Registered Member

    Joined:
    Sep 12, 2015
    Posts:
    205
    Yes. Read about the new, experimental feature here.
     
  18. TestPersonX

    TestPersonX Registered Member

    Joined:
    Jul 13, 2009
    Posts:
    39
    Location:
    Germany
    Wow, great, thanks! Very interesting to find an update SW (now owned or at least branded by MalwareBytes) on some developers website with such a hidden feature. Amazing :D:D:D
    A bit irritating, but I do not worry or bother at all, am VERY happy with this great feature and will try it now.
     
  19. kC_

    kC_ Registered Member

    Joined:
    Apr 6, 2007
    Posts:
    580
    very useful feature! for some added security would it be possible expand this to only valid "digitally signed" executable's?
    also possible to input multiples separated values with comms or semi colon?
     
  20. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    6,167
    hi @alexandrud

    May I ask you a question?
    do you think could be added windows firewall control - Rules Panel a new column (date of created rule) ?
    so we can sort of date ?
    thanks
     
  21. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    Unfortunately this can't be added because a firewall rule does not have such property. What you can do is to play with the Description column and add there this info in which format you like and then sort by Description column.
     
  22. mantra

    mantra Registered Member

    Joined:
    Jan 25, 2005
    Posts:
    6,167
    hi ,ok
    thanks
     
  23. aiolos_

    aiolos_ Registered Member

    Joined:
    Mar 2, 2023
    Posts:
    3
    Location:
    Outer space
    So if I understand this correctly, you only create allow rules and instead of creating deny rules you just put applications in the notification exception list? (Medium profile)
     
  24. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,102
    Location:
    Lunar module
    Yes, that's correct. But I create blocking rules, an old habit after Outpost and Comodo.
     
  25. aiolos_

    aiolos_ Registered Member

    Joined:
    Mar 2, 2023
    Posts:
    3
    Location:
    Outer space
    Oh, a fellow former Outpost user, how nice.
    I do the same, seems a lot more reasonable even if the result is the same. Too bad we can't create blocking rules for apps we want to partially allow. Outpost made a lot more sense.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.