Windows Firewall Control (WFC) by BiniSoft.org

Discussion in 'other firewalls' started by alexandrud, May 20, 2013.

  1. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,562
    Location:
    Romania
    Yes, they are special. Svchost.exe is used by all Microsoft Windows services to connect to the Internet. The operating system has some restrictions on which protocols and ports some of these services are expected to execute. This is why for certain services, a generic allow rule will not apply. The same thing for SYSTEM, certain network related actions are expected to happen and allowed only in certain circumstances. If you check the Windows Firewall default rules, there are many rules for svchost.exe and System. They can't just be replaced with 2 rules only.
     
  2. Backfield

    Backfield Registered Member

    Joined:
    Jul 26, 2025
    Posts:
    5
    Location:
    USA
    Thanks!

    So other than the Windows default rules + WFC recommended rules, it's fine to just ignore any other svchost.exe and System notifications and leave them blocked?
     
  3. alexandrud

    alexandrud Developer

    Joined:
    Apr 14, 2011
    Posts:
    2,562
    Location:
    Romania
    WFC recommended rules is a subset of Windows default rules, a minimum ruleset required for basic networking operations. You can use WFC recommended rules as a starting point, on top of which you will add new rules for your custom programs. If you don't need to access/ping your machine from your local network, you can delete all the inbound rules from this subset. Below is my starting ruleset:

    upload_2025-7-30_14-41-57.png

    No inbound access, my web browser allowed and the rules required for my printer to print papers.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.