Solved

Windows Advanced Firewall - how to overrule all other rules?

Posted on 2015-01-29
5
113 Views
Last Modified: 2015-02-02
I have a Windows 7 machine where I configured the firewall so that certain applications will ONLY be able to connect out to the Internet *if* the VPN is active.

I followed this guide:
http://www.nerdjargon.com/2013/10/how-to-force-windows-application-to-use.html

Basically, the NIC connection via VPN is labeled as "PUBLIC", and then various OUTBOUND firewall rules block specific applications from connecting out through PRIVATE and DOMAIN connections.  

I also created similar inbound rules.


The problem I'm facing, is that the application I'm using has auto-updaters/agents, and although I initially modified or created firewall rules as described above, I've found that the application is automatically adding new firewall rules (where it's opening up the application on any connection)

I don't know if it does this when it sees it can't connect out, or when the application is auto-updated or what... but this is bypassing the rules I set up to block the application if the VPN isn't active.


So my question is what can I do about this?

I didn't find this option, but is there a way to "order" the rules to they get processed in a particular order (where I can put my block rules first for example)

Or what other actions can I take to prevent this app from adding firewall exceptions?


Thanks
0
Comment
Question by:Vas
5 Comments
 
LVL 36

Expert Comment

by:Mahesh
ID: 40579131
Most of the applications are windows firewall aware and they make appropriate exceptions in firewall during installation only
In that case applications add exceptions automatically as necessary so that they can open appropriate ports in firewall because applications installation runs under administrator privileges

If its not that way, Windows will prompt error message that application is getting blocked by windows firewall and do you want to exempt it, if yes, an exception will be created in firewall.
0
 
LVL 24

Expert Comment

by:Lionel MM
ID: 40579619
What program are you trying to limit--to me this program is the problem and not your firewall--if it is making changes to your firewall setting and auto adding it own firewall exceptions then that is a problem because only you should be allowed to make firewall changes--most reputable software asks for permission before making changes to your firewall.
0
 
LVL 1

Author Comment

by:Vas
ID: 40579683
It's the Battle.net game client, and I found this thread on reddit that also confirms this:

http://www.reddit.com/r/wow/comments/2j4rgc/itd_be_nice_if_battlenet_didnt_do_this/


I probably have UAC disabled, so that could explain why I don't get notified each time...

Now, the firewall exceptions that get added are 'Program'  (path based),  would it help if I set up port-based firewalls rule instead, and just block all the relevant ports listed here:

https://us.battle.net/support/en/article/firewall-proxy-router-and-port-configuration
0
 
LVL 38

Accepted Solution

by:
Aaron Tomosky earned 500 total points
ID: 40580080
Either use port based rules, or add a 3rd party firewall like Comodo. Apps can't make rules automatically in 3rd party firewall apps
0
 
LVL 24

Expert Comment

by:Lionel MM
ID: 40580147
I agree and can you turn off the auto update feature on the game and check manually instead?
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
The viewer will learn how to successfully download and install the SARDU utility on Windows 7, without downloading adware.

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question