Update:
I ran a search of Windows freeware firewalls to replace or augment
the existing Windows 10 firewall (which I simply do not understand).
I found these listed most in the alt.comp.freeware newsgroup:
a. TinyWall <
https://tinywall.pados.hu/download.php>
b. Evorim <
https://www.evorim.com/en/free-firewall>
c. Windows Firewall Control <
https://binisoft.org/wfc>
d. Privatefirewall <
https://www.privacyware.com/personal_firewall.html>
e. Comodo Free Firewall <
https://www.wilderssecurity.com/threads/comodo-firewall-privacy-intrusion.181922/>
f. Kerio <
http://www.privacyware.com/personal_firewall.html>
Skimming the few dozen threads, it seems two are most often discussed:
a. TinyWall <
https://tinywall.pados.hu/download.php>
b. Evorim <
https://www.evorim.com/en/free-firewall>
Here is my syslog for TinyWall installation:
A. TinyWall version 3.0
1. <
https://tinywall.pados.hu/download.php>
2. <
https://tinywall.pados.hu/files/TinyWall-v3-Installer.msi>
Archive: [x:\archive\network\firewall\tinywall\TinyWall-v3-Installer.msi]
Name: TinyWall-v3-Installer.msi
Size: 1495040 bytes (1460 KiB)
SHA256: 9E4AE5698A2A196BBB5754D191BE14EA3B9121B1EFC3356306DA2847AE9FE927
3. Kill network gateway
4. Doubleclick TinyWall-v3-Installer.msi
TinyWall only allows network traffic that you have explicitly
whitelisted AFTER installation. [Next]
[x]I accept the terms in the License Agreement [Next]
Install TinyWall to: C:\Program Files (x86)\TinyWall\
Change to: C:\app\network\firewall\tinywall\ [Install]
5. TinyWall Setup:
The installer has encountered an unexpected error installing this package.
This may indicate a problem with this package.
The error code is 2503. [OK]
<
https://i.postimg.cc/gk3KxpLB/firewall01.jpg>
Here is my syslog for Evorim installation:
Evorim 2.5.6
1. <
https://www.evorim.com/en/free-firewall>
2. <
https://www.evorim.com/download/freefirewall-setup.exe>
Archive: [x:\archive\network\firewall\evorim\freefirewall-setup.exe]
Name: freefirewall-setup.exe
Size: 41465144 bytes (39 MiB)
SHA256: B4CDF4053D5F58788B7DE565DF71CE619BCC476162E50344859FD5213F6C4A30
3. Kill network gateway
4. Doubleclick freefirewall-setup.exe
Administrator rights are required for a full installation.
You are prompted for permission during the installation.
[x]Express installation
I changed that to:
[_]Express installation > [Next] [Accept]
Directory for the installation: C:\Program Files\Evorim\Free Firewall
Browse: C:\app\network\firewall\evorim [Next]
Note that it phones home (so I'm glad I killed the gateway).
A more recent version could not be found > [Install]
The installation is being prepared.
The installation has been started.
A system restore point is being prepared.
A system restore point is created. Please wait ....
System restore point was successfully created.
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\license_de.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\license_en.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\FirewallSvc32.exe
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\FirewallSvc64.exe
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\efwtc32.dll
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\efwtc64.dll
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\resources\app.asar
Links created: Free Firewall
Links created: Free Firewall
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\jsoncpp.license.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\lz4.license.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\license.thirdparty.html
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\zlib.license.txt
System restore point is closed.
Installation successful.
[Exit]
5. A desktop shortcut was created:
Free Firewall.lnk
TARGET: C:\app\network\firewall\evorim\FreeFirewall.exe
STARTIN: C:\app\network\firewall\evorim
Using the rightclick "SendTo" menu, move that shortcut where it belongs:
move "Free Firewall.lnk" "c:\menu\network\firewall\evorim.lnk"
Such that the taskbar accordion foldout cascade menu is populated:
Tasbar > menu > network > firewall > evorim
6. Click on that shortcut in the firewall menu.
Note it supposedly starts as "Disabled"
But then click on (?) > [Read FAQs]
Holy shit. It bypassed my gateway killswitch!
I had been expecting an offline FAQ readme, but it connected!
<
https://www.evorim.com/en/free-firewall#faq>
How the hell did it do that?
Maybe I didn't remember resetting the killswitch?
Hmm. I need to test that later.
Anyway, documentation is here:
FAQ: <
https://www.evorim.com/en/free-firewall#faq>
DOC: <
https://www.evorim.com/en/freefirewall-documentation>
7. It starts off with four five main super options:
Start, Applications, Services, Zones, Events, Tools
8. I clicked on the [Start] left main menu:
Applications:
Disabled (Network traffic is not monitored and not controlled.)
Enabled (Network traffic is monitored an all programs are controlled.)
Gaming (All notifications are disabled and games get network access.)
Blockade (Network traffic is blocked for all programs and services.)
Total: 72
Applications: 37
Services: 35
Monitored programs: 28
Blocked programs: 0
Allowed programs: 44
I switched the "Start" choice to "Enabled".
9. I clicked on the [Applications] left main menu:
There were 38 entries each with a default choice, e.g.,
Vi Improved - A Text Editor [Ask for permission]
Cortana [Allow all]
Opera Internet Browser [Allow all]
Where the choices are:
Allow all
Deny all
Aks for permission
Apply rules
Edit rules
Tools > {Hide entry,Start the program,show directory,copy path to clipboard}
10. It's gonna take a while to figure the setup out.
<
https://i.postimg.cc/2yRqYZK5/firewall02.jpg>
The key question is how to approach firewall setup in the first place.
o Do we simply accept everything at first until we get the hang of it?