Windows Firewall Control (WFC) by BiniSoft.org

Discussion in 'other firewalls' started by alexandrud, May 20, 2013.

  1. kronckew

    kronckew Registered Member

    Joined:
    Aug 27, 2006
    Posts:
    455
    Location:
    CSA Consulate, Glos., UK
    I've cut back on my test list, i'd added a couple new countries, kinda overdid it.
    Back to a bit smaller, just bad guys.
    upload_2021-5-25_0-16-0.png
     
  2. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    11,126
    Location:
    U.S.A. (South)
    Thanks for your continued efforts, support and development of WFC.
     
  3. Graphite85

    Graphite85 Registered Member

    Joined:
    Aug 28, 2020
    Posts:
    40
    Location:
    New Zealand
    Can the entries with (U) created by secure rules basically be deleted? I have an accumulation...
     
  4. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    It is possible and even necessary as they accumulate. If you turn on automatic deletion, then you will not find out which particularly cunning programs created rules without your knowledge.
     
  5. Graphite85

    Graphite85 Registered Member

    Joined:
    Aug 28, 2020
    Posts:
    40
    Location:
    New Zealand
    What about rules that got blocked that I may actually want enabled, can I changed a blocked (U) rule to enabled?
     
  6. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    Yes you can, just move it to an authorized group and enable it or create your own rule based on it. Optionally, the U prefix can also be removed.
     
  7. sego

    sego Registered Member

    Joined:
    Mar 28, 2018
    Posts:
    5
    Location:
    DE
    Hello,

    does anyone also have the problem that "Sharing internet connection" is not editable as shown in the picture?

    I can only see "Internet connection sharing" under the original Windows Firewall too under "Monitoring", so I can't disable or delete anything, absolutely nowhere obviously.
    Possibly in Services, but there I have also an error message.
    Possibly in the registry, but that does nothing and I break even more.

    I tried to reset everything but without success.
    Windows firewall controll does not seem to be able to do anything here, because "Internet connection sharing" does not appear there at all.

    upload_2021-6-2_16-6-10.png


    addendum:
    "Internet connection sharing" comes with the installation of Hyper-V from Windows features.
    But as seen, this entry cannot then be influenced or disabled via Windows Firewall Control - with nothing I think !
     
    Last edited: Jun 2, 2021
  8. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Hello. I'm a newbie with this WFC since I needed a free firewall that would let me ask me to allow, deny, customize, etc. in my week old, updated 64-bit W10 Pro. PC. I used to use Conseal PC Firewall, Outpost Firewall 2009, PC Tools Firewall v7, Norton's (before 2015), etc. in my older Window versions. I didn't let them do automation rule creations since I wanted to review first before making decisions! Internet people suggested to try WFC. So I tried it in a 64-bit W10 VM to play with. After getting answers from https://www.reddit.com/r/windows/co..._free_firewall_program_for_64bit_w10/h0ni5x3/, I find it a winner over other firewalls that I tried. It's funny how many people just use the W10's firewall. It doesn't ask me to allow or deny with customizations!

    I just deployed it to my week old production 64-bit W10 Pro. PC. ;) Sheesh, I have so many existing rules including duplicates. It's quite scary how many are allowed especially from W10. I need to go through them to see what shouldn't be allowed and then tweak even more by only allowing specific ports and all that crap. :/ Does anyone start from scratch to heavily tweak their firewall?

    Is there a way to set more than one protocol types like UDP & TCP for a single program rule? I know you can do port multiple numbers and ranges. Does anyone start from scratch to heavily tweak their firewall? I'm sure I'll have more questions to ask those. ;)
     
    Last edited: Jun 6, 2021
  9. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    No. Each protocol needs a separate rule.
    I remove all existing rules and start over from null.
     
  10. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Ah. Did it take a long time to get everything working from scratch? It's crazy how many processes are accessing the network.
     
  11. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    Microsoft believes that all Windows processes should go online, and that you should transmit telemetry, but in fact, the user can control it all.
    To begin with, you can use only the recommended rules included in the Windows Firewall Control distrib.
     
  12. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Is there a guide or something to know what should be blocked and allowed in details? Ugh, dashost.exe is driving me crazy now.
     
  13. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    I do not know of a general unified guideline
    He does not need an Internet connection. By the way, if you do not currently have a prohibiting or permissive rule for dashost.exe, it does not have an Internet connection.
    To avoid seeing notifications from dashost.exe, create a blocking rule or add dashost.exe to notifications exceptions.
     
  14. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Thanks. See, I don't know whether to block or allow some of these W10's processes. :/
     
  15. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    To put it simply, only svchost.exe should have access to the Internet plus the process that updates the Windows Defender antivirus databases (I don't use it and can't tell the name right away), plus the service responsible for Windows Updates (optional).
    Block 1-2 applications, check the system, then block the next two, and so on.
     
  16. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Is there a way to have WFC show domain names with their IP addresses? I know I can do IP address look ups, but that doesn't tell much like if it is CloudFlare. Some program's updater phone home to check for updates. It would be nice to see their domain name addresses.

    Also, is there a way to have the program's firewall prompt to allow access ONCE and ask again later if it needs to access the network again?
     
    Last edited: Jun 6, 2021
  17. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    Not. Windows Firewall does not have a resolving function.
    Not. Only temporary allow for 5min ....
     
  18. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Bummer. Where's the temporary allow option when it prompts me what to do? Am I not seeing it? I do see block once and ask later. Where can I leave suggestions to be implemented in the future version to make WFC better. :D
     
  19. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    ScreenShot_69.png
    There is a program developer in this forum thread
     
  20. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Oooh, I didn't know those, but no allow now and ask me later (next attempt like blow one)? Neat tricks. Thanks. :D
     
    Last edited: Jun 7, 2021
  21. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    The user manual can answer to a lot of questions you may have about WFC. Just have a look here: https://binisoft.org/pdf/guides/Malwarebytes-WFC-User-Guide.pdf
    It also answers why there is no Allow now and ask me later option.
     
  22. antdude

    antdude Registered Member

    Joined:
    Apr 10, 2010
    Posts:
    20
    Location:
    An Ant Farm
    Thanks. Interesting. I wonder if all firewall programs have this limitation in W10.
     
  23. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    1,103
    Location:
    Lunar module
    COMODO Firewall has a similar option ”allow now, but don't remember the answer”. It seems that Outpost does too, but I'm not sure, I haven't worked with it for a long time.
     
  24. JNicoll23

    JNicoll23 Registered Member

    Joined:
    Oct 24, 2009
    Posts:
    48
    Location:
    Scotland
    Remember that WFC is not a firewall; instead it provides a better way (than the one MS provided) of controlling the built-in Windows firewall.

    Also, regarding the idea of showing domain names corresponding to IP addresses: remember that one IP address (ie one web server) can easily have hundreds of different domain's websites hosted on it. There's no way to tell which domain name to show you.
     
  25. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,411
    Location:
    Romania
    WFC is not a firewall. It does not inspect the traffic and is not aware of active connections, therefore it can't make a difference between allow now (this connection, this domain, this IP, this process, etc) and ask again if.... ? What is now and what is later?
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.