Help comparing firewall rules that I need to set

Hi. I'm copying Windows firewall block rule to my Norton firewall, I need help setting it up exactly like windows FW.

It says in windows FW that it's the LOCAL ports that needs setting and to block all remote to those local ports. Should I set Norton to like in my picture? How about when choosing outgoing or incoming, should it be set to both or only incoming in Norton? And by having local set in Norton as in the picture with those ports, will ALL remote ports be blocked just like in windows FW?




- - - Updated - - -

I have another question Not related to the above. If I have a rule "Block All incoming connections to all ports and everything" will that make setting local net bios rules as above unnecessary? Or does it matter because it's local ports? But the net bios rules in windows FW as seen in the picture is in the INCOMING section in windows FW, even though the rules are set from local to remote, isn't blocking incoming when its remote port specific rules set to "ALL" local ports?

Ghot said:

@BlackVen0m

Short version...



The explanation...
Otherwise, you will be spending all day, every day, messing around with the firewall.
I have Bitdefender Internet Security (paid) AV/firewall.
I have set it just like I explained above.

My firewall has TWO main tabs. One shows me ANYthing that tries to access the internet in either direction.
The other tab allows me to set rules based on what I see in the 1st tab.

For example, when I go to UUP Dump to download a Windows ISO... it creates a package which will download the ISO via a .bat file. The ;point here is... that it need to access the internet to download the ISO I selected and set up.

When I run the .bat file it doesn't do anything, because the firewall is set to block all. BUT... it pops up a line on the Application Access tab, showing that it tried to connect to the internet.
Now, I can simply go to the firewall Rules tab, and browse to the file trying to access the internet and allow it.

When it's finished... I remove the Rule I just created.

Now for something like Firefox I created a permanent rule allow it to access the internet, because I use it all the time.


The only two items I have given a permanent rule like that are Firefox and svchost.exe

Other items like winstore.app.exe which is required when I want to use Microsoft store... I leave the rule in place, but keep it toggled OFF until I need it.
I do the same for Utorrent... toggled off until I need it.

Then there's a program like CCleaner, which I don't to update... ever. I keep those rules in place and toggled OFF always.

That's really great that you have toggles on that firewall. What firewall are you using? Ok I understood what you were saying. But like some things use port 1900 which is a risk I read, like a game i play or something else, so if I enable it while I use it I'm at risk because now the port 1900 is open. But if I enable all connection to the software (even if 1900 gets blocked it works), but I have a rule that blocks 1900 for all things in my pc, I still can use the software but that port gets blocked because I made a separate rule for 1900 regardless of what software I use on my pc. So wouldn't that be a better solution?

Ok. But you don't have any opinion of what I said? I mean if I play a game that opens port 1900 then I'm all open for that many hours putting me at risk, so that's why I have a separate rule for 1900 that gets blocked even if I play the game, because the game works without the port for some reason, but that protects me even when playing the game. And also when I allow the game I only have it allowed for that game. So I should not be worried because I have only opened the port on that EXE file. So the ports the game use is not open otherwise because it's only open for that EXE file.

There should not be any risks, but only through that game, and only when I use it, someone needs to start that exe file for them to get through the ports used by that game, and they can't even do that because I have those ports blocked outside the exe file, so they can't get in to start my games exe in the first place?