Solved Set Windows Firewall to block everything and ask for permission

Seymour Kelburn

New member
Local time
12:56 AM
Messages
12
Hi!

I've been trying to set Windows Firewall to behave like that, but can't figure how.

In two lines, I want this:

- Every attempt to connect to internet is blocked, and a pop-up warns about it and ask for permission.

- There's a "remember this action" checkbox so you only have to authorize Chrome, Mozilla, utorrent and other main internet apps once.


I'm pretty sure years ago this was the default behavior of Windows Firewall, wasn't it? Anyway, I'm trying to setup firewall to this, but can't see how. I've tried the most evident tweaks in Firewall setup, but I must be missing something.

Any help? Thanks in advance!
 

My Computer My Computer

At a glance

Windows 7 Home Premium x64i7 3610QM12GBNvidia GeForce GTX 670M
Computer type
Laptop
Computer Manufacturer/Model Number
ASUS G75VW
OS
Windows 7 Home Premium x64
CPU
i7 3610QM
Memory
12GB
Graphics Card(s)
Nvidia GeForce GTX 670M
Screen Resolution
1920x1080
Hard Drives
2x Samsung 840 EVO SSD
Internet Speed
10 Mb ADSL
With the Windows firewall, it's not possible to do what you want. The fundamental lacking feature you're looking for are connection attempt notifications, which it doesn't have.

It has the ability to block outgoing connections (which is disabled by default), but you can enable and fine tune them on the advanced firewall settings, putting the rules to allow only certain programs to connect under certain protocols and ports. However, when a connection is blocked due to those rules, the firewall will NOT warn you (without chance of allow/deny), the program will simply fail with an access denied.

You may use a third party programs that attempt to give back those notifications. I've used Windows Firewall Notifier - Home, with limited success, but didn't find that useful. Give it a try at least. But if you really want reliable notifications, a good thing, I'm afraid you should begin to look at other, more serious firewall options.
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64Intel Core i7-740QM8 GB DDR3NVIDIA GeForce 330GT
Computer type
Laptop
Computer Manufacturer/Model Number
Toshiba Sattelite A665-S6092
OS
Windows 7 Ultimate x64
CPU
Intel Core i7-740QM
Memory
8 GB DDR3
Graphics Card(s)
NVIDIA GeForce 330GT
Screen Resolution
1366x768
Hard Drives
Samsung 840 SSD 500GB
1TB USB3 external HD
Cooling
Coolermaster Notepal U3 notebook cooling pad
Internet Speed
3mbps ASDL
Antivirus
ClamWin 0.98.7
Browser
Opera 12.17 x86 (main), Firefox 38 (sec), IE11 (last resort)
Gracias mil, Alejandro, y un saludo desde Galicia.

Bad news, but at least I can stop wondering what I'm doing wrong ( ; Can't believe a "standard" firewall can't do something so basic. Amazing.

I'm a 3D/VFX guy, muy knowledge about nets and firewalls is at basic user level. Maybe that behavior I want, that seems so esasy and natural to me, is in fact something weird or difficult to manage, and that's why "home firewalls" dont give you that option. Because nobody wants that.

I tried to lock everithing with window firewall, and then create specific In and Out rules to allow Chrome, but it's not working. Don't know why. Maybe I should give permissions to some other "core" .exes, not only chrome.exe.

I'll take a look at that program you mention (thanks) and check features of the most common firewall apps, ZoneAlarm or so.

If it gets too tricky for me, I have a radical solution: That sensible machine won't be connected to Internet no longer, and problem solved.
 

My Computer My Computer

At a glance

Windows 7 Home Premium x64i7 3610QM12GBNvidia GeForce GTX 670M
Computer type
Laptop
Computer Manufacturer/Model Number
ASUS G75VW
OS
Windows 7 Home Premium x64
CPU
i7 3610QM
Memory
12GB
Graphics Card(s)
Nvidia GeForce GTX 670M
Screen Resolution
1920x1080
Hard Drives
2x Samsung 840 EVO SSD
Internet Speed
10 Mb ADSL
Instead of trying to make Win 7's firewall do what it really wasn't intended to so, try replacing it with ZoneAlarm's Free Firewall. I just downloaded and scanned the installation file to make sure there was no malware attached since so many websites that were once clean are now doing so. When installing it, just be alert to any toolbars, etc. being offered (you do not need ZoneAlarm's tool bar; if you can't block its installation, you can remove it later).

ZoneAlarm will provide a popup that will allow you to choose to allow or deny the outbound transmission one time only or every time. There will be quite a few popups at first but, as ZA becomes "trained", they will reduce in frequency.
 

My Computer My Computer

At a glance

Win 7 Ultimate 64 bitIntel i7-3930KKingston HyperX Genesis 32GB Kit (8x4GB Modul...MSI R7850 Twin Frozr 2GD5/OC Radeon HD 7850 2...
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom Build
OS
Win 7 Ultimate 64 bit
CPU
Intel i7-3930K
Motherboard
ASUS P9X79 WS
Memory
Kingston HyperX Genesis 32GB Kit (8x4GB Modules) 1600MHz DDR
Graphics Card(s)
MSI R7850 Twin Frozr 2GD5/OC Radeon HD 7850 2GB 256-bit GDDR
Sound Card
Asus Xonar Essence STX
Monitor(s) Displays
3x Asus VG248QE 24", Vizio 32" TV
Screen Resolution
1920 x 1080, ?
Hard Drives
Samsung 128GB 840 Pro SSD (1),
Samsung 4TB 850 EVO SSDs (4)
Samsung 4TB 850 EVO SSDs (16) external backup drives used in 2.5" hot swap bays in the computer.
PSU
Corsair HX750w
Case
Antec Two Hundred v2 (modified)
Cooling
Cooler Master GeminII S524 120mm (fan replaced with a 140mm)
Keyboard
Logitech G510s
Mouse
Logitech M525 (two in use)
Internet Speed
=< 32Mbps down, 8Mbps up
Antivirus
AVAST!, MBAM, SAS, Spybot S&D (all but MBAM free) Glary Util
Browser
IE11
Other Info
LSI 9211-8i HBA card (8 SATA III ports), 2.5" & 3.5" Hot Swap Bays, HooToo HT-CR001 PCI-E to USB 3.0 Internal Hub + 6 Slot Card Reader, and LG Model CH12LS28 BD-ROM Optical Drive. Also, ScanSnap S1500 ADF duplexing scanner, Canon 9000F flat bed scanner, Corsair SP2500 2.1 speakers, Samsung CLP 415nw laser color printer, Cyberpower PP2200SW UPS
I used ZoneAlarm years ago on Windows 2000 and Windows 98 before that. Windows 2000 didn't have a built in firewall. I rather liked it. If Windows firewall doesn't have the features you need then ZoneAlarm would probably be a good choice.

Windows firewall doesn't have some of these advanced features because they would be misunderstood and misused by many users. Remember that most Windows users know little to nothing about computers and don't want to learn.
 

My Computer My Computer

At a glance

Windows 7 Pro 64 bitXeon W35208 GBNvidia Geforce 210
Computer type
PC/Desktop
Computer Manufacturer/Model Number
HP
OS
Windows 7 Pro 64 bit
CPU
Xeon W3520
Memory
8 GB
Graphics Card(s)
Nvidia Geforce 210
That was Mac users!!! :D

Tonite I'll test Zone Alarm and report.

Thanks you all!
 

My Computer My Computer

At a glance

Windows 7 Home Premium x64i7 3610QM12GBNvidia GeForce GTX 670M
Computer type
Laptop
Computer Manufacturer/Model Number
ASUS G75VW
OS
Windows 7 Home Premium x64
CPU
i7 3610QM
Memory
12GB
Graphics Card(s)
Nvidia GeForce GTX 670M
Screen Resolution
1920x1080
Hard Drives
2x Samsung 840 EVO SSD
Internet Speed
10 Mb ADSL
Zone Alarm rules.

Mark as Solved. Thanks to you all.
 

My Computer My Computer

At a glance

Windows 7 Home Premium x64i7 3610QM12GBNvidia GeForce GTX 670M
Computer type
Laptop
Computer Manufacturer/Model Number
ASUS G75VW
OS
Windows 7 Home Premium x64
CPU
i7 3610QM
Memory
12GB
Graphics Card(s)
Nvidia GeForce GTX 670M
Screen Resolution
1920x1080
Hard Drives
2x Samsung 840 EVO SSD
Internet Speed
10 Mb ADSL
Back
Top