Windows Firewall Control (WFC) by BiniSoft.org

Discussion in 'other firewalls' started by alexandrud, May 20, 2013.

  1. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    1,676
    Location:
    Estonia
    Yes, but the market share of Windows 10 is just 40%.
    Yes, did you try and does not work? If it doesn't try instead of LocalSubnet to set your local LAN IP range. For example: 192.168.0.1-192.168.0.255
     
  2. daw_10

    daw_10 Registered Member

    Joined:
    Jan 7, 2019
    Posts:
    3
    Location:
    UK
    Thank you very much for your reply. It works, I just wanted a re-confirmation of my procedure to make sure that xyz.exe did not make any hidden connection to the internet. Also thank you for a great program for which you provide excellent support.
     
  3. nzo

    nzo Registered Member

    Joined:
    Feb 9, 2019
    Posts:
    1
    Location:
    New Zealand
    Hi alexandrud,

    My PC is on 24/7. Usually I use WFC set at Medium Filtering. When not using the PC (overnight) I set WFC to High Filtering via right-click on the system tray icon. Is it possible to create a keyboard command so that one can switch between the Medium and High options without doing this via WFC's dialog boxes? It would be faster.

    Thank you.
     
  4. Special

    Special Registered Member

    Joined:
    Mar 23, 2016
    Posts:
    179
    Location:
    Canada
    Pointless, just do it in two clicks.
     
  5. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    342
    Location:
    Germany
    To block the Internet сreate a shortcut for the .bat file with this commands as admin and assign hotkeys to it
    This will add two rules, inbound and outbound
    1.png
    Netsh.exe Advfirewall Firewall add rule name="High Filtering profile - Block inbound connections" dir=in action=block description="Block all inbound connections"
    Netsh.exe Advfirewall Firewall add rule name="High Filtering profile - Block outbound connections" dir=out action=block description="Block all outbound connections"
    Similarly, to unlock the Internet

    netsh.exe advfirewall set allprofiles state on
    netsh.exe advfirewall set allprofiles firewallpolicy blockinbound,blockoutbound
     
    Last edited: Feb 10, 2019 at 1:40 AM
  6. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    1,676
    Location:
    Estonia
    New features in WFC, not gonna happen anytime soon.
    This will not remove the block all rule that you created in the first place.
     
  7. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    342
    Location:
    Germany
    This remove
    Netsh.exe Advfirewall Firewall delete rule name="High Filtering profile - Block outbound connections"
    Netsh.exe Advfirewall Firewall delete rule name="High Filtering profile - Block inbound connections"
    You can also disable the network adapter(s) with .bat file, work fine.

    Ad
    Which .cmd can "update rules" to change the WFC icon color of the tray?
     
    Last edited: Feb 10, 2019 at 5:46 AM
  8. aldist

    aldist Registered Member

    Joined:
    Nov 8, 2017
    Posts:
    342
    Location:
    Germany
    When create a rule from the alert window for svchost with service, you must first determine the service name by ID, then select this service from the drop-down menu. Is it possible to make this process automatic? For example, PrivateWinTen himself defines and substitutes the service name in the rule.
     
  9. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    1,676
    Location:
    Estonia
    No. The required code and work are not justified. It is just a false impression that having service based for svchost.exe adds any value of any kind. In reality it is just a waste of time. Once something is broken, the first impulse is to disable outbound filtering to see if this is related, even worse, the firewall disabled entirely. At this point, all these rules are useless. Just leave svchost.exe to connect on ports 80,443 and use your time in a better way. The same applies for rules defined for specific IPs. It is a waste of time. Just allow or block a software entirely. These endless rules customizations don't increase the security at all.
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.