- Local time
- 5:15 AM
- Posts
- 752
- OS
- Windows 11
By default, I would like to block internet access to apps and programs I install, and only allow selective access if a program needs it for core functionality.
While this is to some extent possible, I see that some programs easily make a hole in the firewall and give themselves internet access without consent. They do so by running a background service. The user may not be able to disable/ uninstall the service component alone and yet keep the app functional.
I found a batch file on the internet that will automatically create firewall rules for every executable file (.exe, .DLL, etc.) in a specified location. The problem with this method is the number of rules that get created for each program. If I remember correctly, it creates about 300 entries in Windows Firewall for the VLC video player alone.
This is not a good way about setting up the firewall because it has a direct impact on performance. For every internet connection request, the firewall now has to go through hundreds or thousands of entries before allowing/ denying the request. This will definitely slow down the system as more and more apps are installed.
In this respect, here are some questions:
1. After a clean Windows installation, I would like to block all (future/ prospective) inbound AND outbound connections by default, whilst allowing (whitelisting) the existing connections. This way, no new program I install will be able to connect to internet without me explicitly creating a rule for it in Windows Firewall.
How to accomplish this?
2. How do I block any program from making any changes to Windows Firewall?
3. How do I block all connections from a particular location (path on the internal drive). For example, I may create a folder in the C drive in which I will install new programs. None of the programs installed in this folder should be able to connect to the internet. A single firewall rule should be sufficient if we can block programs based on their installed path. This will also be very efficient as Windows Firewall need to only do one check (location of the program trying to connect to internet).
How to accomplish this?
4. How to control Microsoft Store apps using Windows Firewall?
Thanks.
While this is to some extent possible, I see that some programs easily make a hole in the firewall and give themselves internet access without consent. They do so by running a background service. The user may not be able to disable/ uninstall the service component alone and yet keep the app functional.
I found a batch file on the internet that will automatically create firewall rules for every executable file (.exe, .DLL, etc.) in a specified location. The problem with this method is the number of rules that get created for each program. If I remember correctly, it creates about 300 entries in Windows Firewall for the VLC video player alone.
This is not a good way about setting up the firewall because it has a direct impact on performance. For every internet connection request, the firewall now has to go through hundreds or thousands of entries before allowing/ denying the request. This will definitely slow down the system as more and more apps are installed.
In this respect, here are some questions:
1. After a clean Windows installation, I would like to block all (future/ prospective) inbound AND outbound connections by default, whilst allowing (whitelisting) the existing connections. This way, no new program I install will be able to connect to internet without me explicitly creating a rule for it in Windows Firewall.
How to accomplish this?
2. How do I block any program from making any changes to Windows Firewall?
3. How do I block all connections from a particular location (path on the internal drive). For example, I may create a folder in the C drive in which I will install new programs. None of the programs installed in this folder should be able to connect to the internet. A single firewall rule should be sufficient if we can block programs based on their installed path. This will also be very efficient as Windows Firewall need to only do one check (location of the program trying to connect to internet).
How to accomplish this?
4. How to control Microsoft Store apps using Windows Firewall?
Thanks.
- Windows Build/Version
- Windows 11 21H2 Build 22000.282
My Computer
System One
-
- OS
- Windows 11
- Computer type
- Laptop
- Manufacturer/Model
- HP Envy dv7
- CPU
- Intel Core i7 3630QM
- Motherboard
- HP
- Memory
- 16 GB
- Graphics Card(s)
- Intel HD Graphics 4000 & Nvidia GeForce GT 635M
- Sound Card
- IDT High Definition
- Screen Resolution
- 1080p
- Hard Drives
- 1 TB Crucial MX500 on bay 1.
1 TB Seagate HDD on bay 2.
- Antivirus
- Windows Defender