Svchost - suggest best rules please

Is there anyway to have multiple rules in Appplications?
I desperately need two svchost versions, at least
1. for daily use - DHCP, nothing else
2. For patches when I choose to install'm - need IE to run, need svchost out to port 80 (maybe even 443), maybe 53 by UDP but I think IE does it
Suggestions?

 

If your Windows DNS-Client service is stopped or disabled, IE and other applications would be seen doing the DNS lookups.

In those application filtering IPs and ports fields, you can add multiple information. Separate using ; ...example;

53;80;443

192.168.1.1;192.168.1.2;192.168.1.3

 

Phant0m,
svchost is always a can of worms.

Anyway,
DNS client is off here, always, and internet apps have 53 under udp and other usual ports for TCP. IE is normally disabled, except for when I do windows update. So I have no problems here.

BUT...
It appears we can't make a second app rule to be toggled on and off for when I do windows update, where it does need internet. I tried, it didn't work.
I know the ports to put in, but would prefer for it never to be active in normal, daily use.
Bottom line - I guess it's ok considering AV, and LnS, and your tight rules and SSM(hips).