Windows Filtering Platform (WFP) is configured by installing providers of filter rules [1]. All firewalls (that based on WFP) use standard Windows Firewall's (WFW) provider or create new one. For example, WFC, Glasswire use WFW's provider. But SimpleWall, TinyWall use own provider. There is a filter arbitration mechanism for multiple providers in WFP [2]. (BTW, filter's weight is significant only inside of provider.) Also, firewalls can use WFP's standard filtering mechanism or custom mechanism by using own kernel driver - Callout driver [3]. So, some other firewalls have own driver for flexible filtering. For example, Portmaster, PeerBlocker. [1] https://docs.microsoft.com/en-us/windows/win32/fwp/windows-filtering-platform-architecture-overview [2] https://docs.microsoft.com/en-us/windows/win32/fwp/filter-arbitration [3] https://docs.microsoft.com/en-us/wi...ork/callout-driver-programming-considerations
v3.6.4 (19 Juny 2022) added focus assistant support (win10rs3+) fixed notification sometimes can lose focus of fullscreen app fixed internal profile loading crash (issue #122 fixed blank notifications (issue #1009) I am testing as we speak.
Are any simplewall users here running it with Windows firewall enabled? I'm wondering if running both firewalls together provide any benefit over just using simplewall?
Just tried it for the first time. What are these IPs under Blocklist? Some of them say spy, others say extra, then there are update(s) Edit: Nevermind, I think I understand now, it's for blocking the spying telemetry IPs and Windows updates
There’s none. It would be if any third party one is an IDS, or/and does what Simplewall does not like DNS filtering. But since it doesn’t register to Windows Defender as a firewall, if you disable Windows Firewall Windows Defender will brag about it and that’s annoying.
I haven't used Simplewall (SW) since a few years ago but I'm giving it another trial. I notice that there have been a lot of changes since I last used SW. Thus (for me at least) SW is no longer as simple as it used to be. I have been running SW version 3.6.1 for several hours now. I enabled filters and checked every recommended option as follows: Block outbound connections for all (recommended) >> CHECKED Block inbound connections for all (recommended) >> CHECKED Allow loopback connections for all (recommended) >> CHECKED Allow IPV6 redirections for all (recommended) >> CHECKED Sure enough, SW blocks ALL outgoing connects BUT: 1- It doesn't pop up a notice asking me whether I want to Allow the blocked app or leave it Blocked. AND 2- It doesn't add the blocked app to SW's "Apps" tab as it used to do. Thus, I am unable to unblock my safe apps. =>QUESTION: What am I doing wrong?
Under System rules, delete all rules except the DHCP rule. The options shown must be enabled The Windows Firewall should be turned off. Start your browser, you should see a notification requesting to log on to the network. See the log of blocked connections.
@aldist -- Many MANY thanks for your guidance. I did as you suggested & Simplewall (SW) immediately began popping alerts & adding apps to the apps tab. IOW, it worked just the way I wanted it to. Comment: It's interesting that -- per your guidance -- I had to disable all but one of SW's default system rules. BEFORE I disabled these rules, SW was allowing all my on-board apps to connect out and NO apps were being added to SW's apps tab. Does this mean that SW's default system rules enable SW to allow an app to connect out, without user approval, just so long as the app accords with SW's rules? If so, is SW trending toward becoming a system designed by experts for execution by amateurs?
I asked of the github page, but they weren't very helpful. I was essentially told that there was no need for a block rule because Simplewall block by default unless told not to. But my original question still stands. I have my browser set to only communicate through a sock5 proxy; 10.64.0.1:1080. If I create a rule for it to communicate using a remote allow rule 10.64.0.1:1080 it works just fine. However that rule is not exclusionary; meaning that other addresses and ports are not blocked like I want them to be, despite the block all setting being selected. How can I make it so that everything will be blocked except the addresses/ports I allow? The Windows Firewall can do this just fine.
The bold-letters part of their answer doesn't make sense. Why? Because -- unless I follow @aldist guidance in comment 833 above -- SW allows/blocks an app and does NOT ask the user. So, how is user supposed to tell SW not to block? Further, SW's apps tab is MUCH less informative and useful than it used to be. As I noted, SW seems to be going the route of "designed by an expert for use by rank amateurs."
I wonder if it’s what I noticed too some time ago. Try unchecking the apps in the app tab. It seems rules will still stands but SW will continue to ask (if I get the issue right).
Not me, but I wonder why such rules actually exists since there’s no use of blocking QUIC. One would prefer to block plain DNS requests instead… It’s like having a rule to block HTTPS. WTF actually?
Simplewall (SW) is running splendidly on my Win7 computer and, as of today, on my Win11 computer. SW is great out-of-the-box BUT becomes superb once user begins to understand its default/deny structure plus the use of rules & other tweaks. It's too bad that SW lacks a User's Guide.
I am using portable mode but simplewall does not auto start at startup . I have simplewall.ini in app folder.What am i doing wrong? Thks
I am also in portable mode and startup works OK. Check the setting is ticked: Settings > General > Load on system startup There should be an entry for SWall in: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
hi @henrypp, would be possible to add a killswitch to block all connections, and a return button to set internat back to what it was? could you recompile code with that said feature?
I wonder the same thing and believe me it's not a dumb question at all. While searching I found not enough information though. Well I did find only this: https://github.com/henrypp/simplewall/issues/888#issuecomment-826774108
