Solved

Windows 2012/2008 server - Windows Firewall: is it possible to block Internet traffic only for third-party programs?

Posted on 2014-02-24
2
630 Views
Last Modified: 2014-02-24
Is it possible, with Windows Firewall in Windows 2012 or 2008, to block all inbound and outbound Internet traffic only for third-party programs?
(Microsoft/Windows programs must have full access to Internet)
0
Comment
Question by:lucavilla
2 Comments
 
LVL 9

Accepted Solution

by:
Sean earned 500 total points
ID: 39883721
you would need to create a program rule for every program you don't want blocked. Or do it in reverse and block all except the programs you want to allow access for.
0
 
LVL 35

Expert Comment

by:Mahesh
ID: 39883912
By default windows firewall never allows 3rd party traffic to passed.

When you install 3rd party software's and if they are using custom ports for communications such as torrent software's, while installing they will ask you to allow certain exceptions in firewall, if you do not allow those exceptions, they will remain blocked

The best practise is to deploy GPO with required firewall restrictions and enforce the same on computers so that applications cannot modify it in stealth mode during installation.

You can find it at computer configuration\windows settings\security settings\windows firewall with advanced security

Mahesh
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The article will show you how you can maintain a simple logfile of all Startup and Shutdown events on Windows servers and desktops with PowerShell. The script can be easily adapted into doing more like gracefully silencing/updating your monitoring s…
You might have come across a situation when you have Exchange 2013 server in two different sites (Production and DR). After adding the Database copy in ECP console it displays Database copy status unknown for the DR exchange server. Issue is strange…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now