Why is the option to block all incomming connections (3:30) not blocking all connections? What are the outgoing connections that are allowed during this serious "block a lot of connections" act?
Firewalls are processed in sequence from top to bottom. If you have another rule that allows an incoming connection before the rule to block all incoming connections, that one will be allowed while all others will be blocked.
I’m self-teaching myself cybersecurity stuff and concerned that my system was breached in the course of my studies. Can you tell me how to block all outgoing traffic except for specific programs, such as Chrome, so I can monitor to see if someone is trying to connect to me remotely via something like a reverse shell?
You would need to create a series of outgoing rules. Create ones to allow outgoing traffic from the apps that you want. Then create one that blocks all other traffic.
Hi. Thank you. May I ask a question. I want to stop all connections and then, as I use applications, have them ask me if I will allow them. I sometimes am asked by an application if I want to allow it. I would plan to do this to make sure that (after removing all connections in firewall) only applications I am starting to use and am aware of, these are allowed by me as and when I start to use them. RATHER then a long list of applications I am not sure should be there (may be insecure).
Windows Defender will notify you by default when something is blocked. If you disable all of the currently active rules, that might get you what you want. Nothing would be allowed and you would get notified when anything is blocked. That might give you what you want. It might be a little overkill, however. I personally would not want to be bothered that often, especially if you have a perimeter firewall as well.
Hello, I have a specific question about a rule I believe you also have, what are the @FirewallAPI.dll,-80201 and -80206 rules related to? What app or process is it related to? Just being curious
It depends. Does your PC currently identify the network as public or private? This is normally an issue for computers that connect to multiple networks. For example, if you have a laptop that you use at home (identified as a private network) and while at a coffee shop (identified as a public network), you may want different firewall settings based on where you are. If you have a desktop that only connects to your local home network, it is not as big of a deal if the network is identified as public or private.
...sehr sehr gut - Thanks 👍
I hope it was helpful.
Thank you. It's informative.
Just a quick question. Why isn't domain listed within the "Allow programs to communicate through the Windows Firewall" section?
In this case, because the PC was not joined to a domain so the domain profile didn't exist.
Very nice video. Thanks for sharing.
I'm glad it was helpful.
Why is the option to block all incomming connections (3:30) not blocking all connections? What are the outgoing connections that are allowed during this serious "block a lot of connections" act?
Firewalls are processed in sequence from top to bottom. If you have another rule that allows an incoming connection before the rule to block all incoming connections, that one will be allowed while all others will be blocked.
@@ddaltonyvcc Thanks for answering. Best wishes.
I’m self-teaching myself cybersecurity stuff and concerned that my system was breached in the course of my studies. Can you tell me how to block all outgoing traffic except for specific programs, such as Chrome, so I can monitor to see if someone is trying to connect to me remotely via something like a reverse shell?
You would need to create a series of outgoing rules. Create ones to allow outgoing traffic from the apps that you want. Then create one that blocks all other traffic.
what is the main purpose why we need to configure advance security. please answer just need it for my school
Can u show how to do this on Windows 11 pls
Hi. Thank you. May I ask a question. I want to stop all connections and then, as I use applications, have them ask me if I will allow them. I sometimes am asked by an application if I want to allow it. I would plan to do this to make sure that (after removing all connections in firewall) only applications I am starting to use and am aware of, these are allowed by me as and when I start to use them. RATHER then a long list of applications I am not sure should be there (may be insecure).
Windows Defender will notify you by default when something is blocked. If you disable all of the currently active rules, that might get you what you want. Nothing would be allowed and you would get notified when anything is blocked. That might give you what you want. It might be a little overkill, however. I personally would not want to be bothered that often, especially if you have a perimeter firewall as well.
Hello, I have a specific question about a rule I believe you also have, what are the @FirewallAPI.dll,-80201 and -80206 rules related to? What app or process is it related to? Just being curious
It has to do with Windows processes. I believe they are used for Windows remote control.
please PLEASE REPLY TO THIS but i try to do it but i see this you will need to open a new app for this windowsdefender link
Control panel >>window defenders
It's not link 🔗. You can it's path Or navigation
great!! fuck i just noticed half of my stuff was allowed to connect on public networks on my home PC. should i only click the Private Network box?
It depends. Does your PC currently identify the network as public or private? This is normally an issue for computers that connect to multiple networks. For example, if you have a laptop that you use at home (identified as a private network) and while at a coffee shop (identified as a public network), you may want different firewall settings based on where you are. If you have a desktop that only connects to your local home network, it is not as big of a deal if the network is identified as public or private.