Windows 10: firewall rule to block addresses NOT on an IP list?

Discus and support firewall rule to block addresses NOT on an IP list? in Windows 10 Network and Sharing to solve the problem; I am just starting to learn the Windows Firewall (working on both Windows 7 and 10) and I'm not impressed with the inflexibility of its rules. I would... Discussion in 'Windows 10 Network and Sharing' started by mike1127, Jun 2, 2016.

  1. mike1127 Win User

    firewall rule to block addresses NOT on an IP list?


    I am just starting to learn the Windows Firewall (working on both Windows 7 and 10) and I'm not impressed with the inflexibility of its rules. I would like to know if


    1. Is there is a way to do what I want with Windows Firewall?
    2. Is there is a third-party firewall that would do it?


    What I want to do is create a rule that blocks outgoing connections, for program X, that are to a destination **NOT** in an IP list.


    Windows Firewall is not very flexible in how you specify IP list rules. When you give an IP list, your rule will match that list... you can't say "trigger the rule for non-matching IP addresses." Therefore to allow outgoing connections to a list, you have to


    1. Change the entire firewall policy to block outgoing connections by default so that you can create an "allow rule" matching your list. This will mess up the rest of your programs.


    2. Somehow combine a block rule and allow rule. Create a block rule for most traffic, with the "allow" rule overriding it when appropriate. However, this doesn't appear to be possible in general. It **may** be possible for connections that use IPSec, I'm not sure. And I'm not sure if I can use IPSec in my application.

    And is there a third-party firewall that can do it? Most 3rd-party firewalls are LESS sophisticated than Windows Firewall, because the use case they are addressing is providing an interface that doesn't require much comprehension. I need one that's actually MORE sophisticated than Windows Firewall.

    :)
     
    mike1127, Jun 2, 2016
    #1

  2. How to downgrade windows 10 version 1709 to 1703

    No because they still force updates. You can only delay updates with metered connections. You have to block all communications with their servers in order to block updates. Don't be intimidated by the windows firewall. You can always delete rules that
    you add. You will name each rule and you can also turn them on and off without deleting them. You only need to add two new rules. One in the inbound and one in the outbound. They will be exactly the same too.

    Just type wf.msc in the cortana box and when the screen pops up, select inbound rules on the upper left. Then in the far right dialog box you will see new rule. Click it and a new dialog box will pop up. Choose custom and then click next. Leave the next
    at default (All Programs) and click next. Leave the next page at default as well and click next.

    On this page, under "which remote IP addresses does this rule apply to," Click The radio button for "These IP addresses." Then click add and start adding the address ranges that I supplied above. You will have to keep adding to the list for each of the
    addresses above. Some are single Ip addresses and some are ranges from one to the other like the first one on the list "65.52.108.1-65.52.108.255." For this select the radio button "This IP address range" and type 65.52.108.1
    in the top box and 65.52.108.255 in the bottom box. This will block all ip's in that range.

    For the single ip's use the top radio button "This IP address or subnet" and enter in the single address such as 23.103.189.157.

    After you've entered all the Ip's then click next and select the bottom radio button to block the connections. Then click next and next again. On this last screen you can name your rule. Name it something like MSUpdateIPs. And give a description to remind
    yourself what this rule is for. Say something like these ip's block MS Updates.

    Then click finish and repeat this method for the outbound rules. You will see that this is fairly self explanatory once you try it. It really is nothing to get intimidated about.
     
    BradLavins, Jun 2, 2016
    #2
  3. REngimann Win User
    "Quickbooks has stopped working" A problem has caused quickbooks to stop working correctly. windows will close the program & notify you if a solution is available.

    The firewall concept works - just needs a little tweaking! Create a custom outbound rule:

    1) Specify "This program path" to your QBW32.exe.

    2) Skip the protocols (use the default)

    3) Under Scope/Which remote IP Addresses does this rule apply to? select "These IP Addresses" then "Add" then "Predefined set of computers" then "Internet"

    4) Under Action select "Block the connection"

    5) Choose your profiles (I use all of them just in case)

    6) Name the rule as appropriate

    This worked for me - I was able to access the database on a domain networked share without the crash.
     
    REngimann, Jun 2, 2016
    #3
Thema:

firewall rule to block addresses NOT on an IP list?

Loading...
  1. firewall rule to block addresses NOT on an IP list? - Similar Threads - firewall rule block

  2. Is it possible to add IP address in the firewall rule via GPO through Powershell

    in Windows 10 Gaming
    Is it possible to add IP address in the firewall rule via GPO through Powershell: Hi Experts,Is there any possible way to add an IP address in the firewall rule via GPO through PowerShell? I have searched on the internet I am not able to find any relevant link.If its possible could someone please let me know how to do that ?I have attached the relevant...
  3. Is it possible to add IP address in the firewall rule via GPO through Powershell

    in Windows 10 Software and Apps
    Is it possible to add IP address in the firewall rule via GPO through Powershell: Hi Experts,Is there any possible way to add an IP address in the firewall rule via GPO through PowerShell? I have searched on the internet I am not able to find any relevant link.If its possible could someone please let me know how to do that ?I have attached the relevant...
  4. Hello, I've created firewall rules to block several remote ip addresses for inbound...

    in Windows 10 Gaming
    Hello, I've created firewall rules to block several remote ip addresses for inbound...: Hello, I've created firewall rules to block several remote ip addresses for inbound connections. Windows defender firewall 11 seems to be ignoring my custom firewall rules, and I ma still receiving junk & porn gmails from these ip addresses. I've created a new custom rule and...
  5. Hello, I've created firewall rules to block several remote ip addresses for inbound...

    in Windows 10 Software and Apps
    Hello, I've created firewall rules to block several remote ip addresses for inbound...: Hello, I've created firewall rules to block several remote ip addresses for inbound connections. Windows defender firewall 11 seems to be ignoring my custom firewall rules, and I ma still receiving junk & porn gmails from these ip addresses. I've created a new custom rule and...
  6. Can i exclude set of IP Address range from the Windows Firewall Rule?

    in Windows 10 Gaming
    Can i exclude set of IP Address range from the Windows Firewall Rule?: Hi,I have configured some Windows Firewall outbound rules which are configured to block some ports on Windows 10 Machine.Want to know if I can exclude a range of IP addresses for a Windows Firewall rule? It seems that kind of feature is not available with the Windows...
  7. Can i exclude set of IP Address range from the Windows Firewall Rule?

    in Windows 10 Software and Apps
    Can i exclude set of IP Address range from the Windows Firewall Rule?: Hi,I have configured some Windows Firewall outbound rules which are configured to block some ports on Windows 10 Machine.Want to know if I can exclude a range of IP addresses for a Windows Firewall rule? It seems that kind of feature is not available with the Windows...
  8. Can i exclude set of IP Address range from the Windows Firewall Rule?

    in Windows 10 Network and Sharing
    Can i exclude set of IP Address range from the Windows Firewall Rule?: Hi,I have configured some Windows Firewall outbound rules which are configured to block some ports on Windows 10 Machine.Want to know if I can exclude a range of IP addresses for a Windows Firewall rule? It seems that kind of feature is not available with the Windows...
  9. Create outbound IP address rule for 127.0.0.1

    in AntiVirus, Firewalls and System Security
    Create outbound IP address rule for 127.0.0.1: If someone says to create a firewall rule 127.0.01 to 127.0.0.1 how would I do that? 163530
  10. Inbound Firewall Rule that Blocks

    in Windows 10 Customization
    Inbound Firewall Rule that Blocks: Please help me understand how the 2 Inbound Rules created by MMC actually operate. Action, Enabled, Service, Program, Protocol Block, Yes, Any, C:\windows\system32\mmc.exe, TCP Block, Yes, Any, C:\windows\system32\mmc.exe, UDP If these...