How to config firewall to block all for one program but allow somw


  1. deanwarrenuk
    Posts : 5
    Windows 10
       New #1

    How to config firewall to block all for one program but allow somw


    Trying to configure my Windows 10 (Enterprise) to block all from a specific program but to allow some ports for that program. For example, on my Windows 10 work PC I am running Oracle VirtualBox. I need to block all external network access to VirtualBox e.g. Internet and alike, but allow all internal networking e.g. corporate Git/file servers.

    I seem to be able to only block everything or allow everything (for VirtualBox). Don't seem to be able to get something in between. I have tried specific blocking rules - no luck. I have tried to block all, then provide an allow rule to override - no luck.

    I understand the presendence is: blocked with override, blocked, allowed.

    Please advise on how to configure Windows firewall to either: block everything for a program but allow certain ports for a certain program, or block certain ports for a certain program.

    FYI: I have two NICs configured on VMs, NAT and Host-only.

    Thanks in advance...
      My Computer
    Quote Quote

  3. TairikuOkami
    Posts : 5,452
    Windows 11 Home
       New #2

    Allow everything, log traffic with LiveTcpUdpWatch, then create rules based on it and test it.
      My Computer
    Quote Quote

  4. deanwarrenuk
    Posts : 5
    Windows 10
    Thread Starter
       New #3

    @TairikuOkami thanks, but not sure that really helps? I mean I know what I want to block, e.g. VirtualBox and certain ports, just can;t get Window Firewall to do anything but block all VirtualBox access or none.
      My Computer
    Quote Quote

  6. Steve C
    Posts : 7,901
    Windows 11 Pro 64 bit
       New #4

    TairikuOkami said:
    Allow everything, log traffic with LiveTcpUdpWatch, then create rules based on it and test it.
    Good tip but what are all the svchost.exe entries?
      My Computers
    Quote Quote

  7. TairikuOkami
    Posts : 5,452
    Windows 11 Home
       New #5

    Steve C said:
    Good tip but what are all the svchost.exe entries?
    By default svchost.exe handles DNS requests, unless DNS servers are set manually, then each app does it by itself. Not to mention the other stuff, like DHCP, Windows and certificates updates, etc.
      My Computer
    Quote Quote

 

  Related Discussions
The Remote Procedure Call Service in Windows runs on Port 135. By default this port is reported as 'Open' when I portscan the system in question. Is there a way to block this port, despite the fact it supports the Remote Procedure Call...
Can 'not' block virtualbox traffic with firewall
in AntiVirus, Firewalls and System Security

I am trying to configure my Windows system such I can block VirtualBox VM traffic to for example the internet but not the local network. That is I have some services on my local network that my VMs must access but I want to block all traffic outside...
Windows firewall without rules and does not block them
in AntiVirus, Firewalls and System Security

I cannot understand why the internetaccess to Microsoft edge is still granted, when i have deleted firewall rules and ruled out "Block all outgoing by default"
Using Windows Firewall To Block Updates
in Windows Updates and Activation

I have a few PC's and they have multiple connections to the internet. These connections appear on each PC as a different network. One of the connections is very expensive and metered, so I don't want Windows updating when the primary connection is...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 22:13.
Find Us




Windows 10 Forums