Windows 10: Block all in/out traffic except to a single IP in Windows Defender Firewall

I have a Private workgroup network with Internet enabled. On one of my PC running Windows 10 Pro 64 bit, I want to block all incoming and outgoing connections both LAN/Internet except to a single PC.
PC-1 has IP address 192.168.1.100

PC-2 has IP address 192.168.1.50

I want to block all traffic on PC-1 except it can send/receive files to PC-2


What I tried so far is; in windows firewall I made 2 rules in Inbound and Outbound connections. The first rule allows all traffic to 192.168.1.50 and the second rule Block all traffic. But this setting is not working, because while searching I found that block rule takes precedence over allow rule.


Can anyone help how to setup the rules to achieve the desired behavior.

:)

 

Windows 2012 Server - Creating an exception for a block rule in the firewall

Hy, ya'll!

I have to deploy a rule to block all outbound traffic towards port TCP 80 regardless of the destination IP, so I set up an outbound "block" rule in the Windows Firewall specifically against that port. it was straightforward and works like a charm. However,
I can't seem to find a way to add one single IP as an exception to this rule.

I tried creating a new rule allowing all traffic to the IP I'm attempting to whitelist but, from what I can gather, the blocking rules in the Windows firewall take precedence over "allow" rules so that explains why it didn't work.

How can I work around this? All I need is to block outgoing traffic to TCP 80 on all but one IP.

Thanks!

 

How do I configure the Windows firewall to block communication with all except one IP address?

I would suggest the following approach:

1. Save the current firewall rules
   
2. Set the default outbound firewall policy to block all
   
3. Delete all outbound firewall rules
   
4. Add a single rule to allow your website
   

Below are the directions in detail.

Save the current firewall rules

• Start Windows Defender Firewall with Advanced Security
  
• Right-click the upper item - Windows Defender Firewall with Advanced Security
  
• Select Export Policy...
  
• Follow the prompts to save.
  

Set the default outbound firewall policy to block all

• Right-click again the upper item - Windows Defender Firewall with Advanced Security
  
• Select Properties
  
• Switch Outbound connections from "Allow (default)" to "Block"
  
  
  
  

Delete all outbound firewall rules

• Click on Outbound Rules
  
• Click on the middle pane on some item to set the focus
  
• Type Ctrl+A to select all the rules
  
• Right-click any selected rule and choose Delete
  

Add a single rule to allow your website

• Still in Outbound Rules, click in the Actions pane on *New Rule"
  
• Select Custom and Next
  
• Leave selected All programs and click Next
  
• Leave Protocol Type as Any and click Next
  
• In Scope, select These IP addresses:
  
• Click Add... and enter the IP address of your website and click OK
  
• Click Next
  
• Select Allow the connection and click Next
  
• Leave all profiles checked and click Next
  
• Give a name to your rule and click Finish
  

Undoing this configuration

To return to normal unblocked rules :

• Start Windows Defender Firewall with Advanced Security
  
• Right-click the upper item - Windows Defender Firewall with Advanced Security
  
• Select Import Policy... and point to the save file created in the first step.
  

You could also save the blocked state, so it may quickly be reset again
by using the Import Policy command as above.

 

Block All Connection Except One one IP(i.e Facebook)

I want to block all my inbound and outbound connection from my computer except one IP address(or URL) i.e Facebook.

I go to "Windows Defender Firewall with Advanced Security" Setting and Created a new Rule to block all connections. Is there any option possible to Block all connections except specific IP/URL? If so, How can I do it?