Solved

Windows Advanced Firewall - how to overrule all other rules?

Posted on 2015-01-29
5
123 Views
Last Modified: 2015-02-02
I have a Windows 7 machine where I configured the firewall so that certain applications will ONLY be able to connect out to the Internet *if* the VPN is active.

I followed this guide:
http://www.nerdjargon.com/2013/10/how-to-force-windows-application-to-use.html

Basically, the NIC connection via VPN is labeled as "PUBLIC", and then various OUTBOUND firewall rules block specific applications from connecting out through PRIVATE and DOMAIN connections.  

I also created similar inbound rules.


The problem I'm facing, is that the application I'm using has auto-updaters/agents, and although I initially modified or created firewall rules as described above, I've found that the application is automatically adding new firewall rules (where it's opening up the application on any connection)

I don't know if it does this when it sees it can't connect out, or when the application is auto-updated or what... but this is bypassing the rules I set up to block the application if the VPN isn't active.


So my question is what can I do about this?

I didn't find this option, but is there a way to "order" the rules to they get processed in a particular order (where I can put my block rules first for example)

Or what other actions can I take to prevent this app from adding firewall exceptions?


Thanks
0
Comment
Question by:Vas
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 40579131
Most of the applications are windows firewall aware and they make appropriate exceptions in firewall during installation only
In that case applications add exceptions automatically as necessary so that they can open appropriate ports in firewall because applications installation runs under administrator privileges

If its not that way, Windows will prompt error message that application is getting blocked by windows firewall and do you want to exempt it, if yes, an exception will be created in firewall.
0
 
LVL 25

Expert Comment

by:Lionel MM
ID: 40579619
What program are you trying to limit--to me this program is the problem and not your firewall--if it is making changes to your firewall setting and auto adding it own firewall exceptions then that is a problem because only you should be allowed to make firewall changes--most reputable software asks for permission before making changes to your firewall.
0
 
LVL 1

Author Comment

by:Vas
ID: 40579683
It's the Battle.net game client, and I found this thread on reddit that also confirms this:

http://www.reddit.com/r/wow/comments/2j4rgc/itd_be_nice_if_battlenet_didnt_do_this/


I probably have UAC disabled, so that could explain why I don't get notified each time...

Now, the firewall exceptions that get added are 'Program'  (path based),  would it help if I set up port-based firewalls rule instead, and just block all the relevant ports listed here:

https://us.battle.net/support/en/article/firewall-proxy-router-and-port-configuration
0
 
LVL 39

Accepted Solution

by:
Aaron Tomosky earned 500 total points
ID: 40580080
Either use port based rules, or add a 3rd party firewall like Comodo. Apps can't make rules automatically in 3rd party firewall apps
0
 
LVL 25

Expert Comment

by:Lionel MM
ID: 40580147
I agree and can you turn off the auto update feature on the game and check manually instead?
0

Featured Post

Comparison of Amazon Drive, Google Drive, OneDrive

What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question