Win+I > Update & Security > Windows Security > Firewall & network protection > Allow an app through firewall

[Arlen Holder]

1. Win+I
2. Update & Security > Windows Security > Firewall & network protection
3. "Allow an app through firewall"

Now what?
o Are your hundred or so settings similar (or different) to mine below?
o What is a checkbox in the _beginning_ mean versus the two in the end?
o What do you recommend, given the hundred or so entries are rather cryptic?
o Why do some, like Opera, have so many firewall opening requests?
o Why are some browsers listed, but plenty of others are not listed?

Control Panel\System and Security\Windows Defender Firewall\Allowed apps
[x]@FirewallAPI.dll,-80201 (Private[x] Public[x])
[x]@FirewallAPI.dll,-80206 (Private[x] Public[x])
[x]{78E1CD88-49E3-476E-B926-580E596AD309} (Private[x] Public[x])
[x]AllJoyn Router (Private[x] Public[_])
[x]App Installer (Private[x] Public[x])
[_]BranchCache - Content Retrieval (Uses HTTP) (Private[_] Public[_])
[_]BranchCache - Hosted Cache Client (Uses HTTPS) (Private[_] Public[_])
[_]BranchCache - Hosted Cache Server (Uses HTTPS) (Private[_] Public[_])
[_]BranchCache - Peer Discovery (Uses WSD) (Private[_] Public[_])
[x]Captive Portal Flow (Private[x] Public[x])
[x]Cast to Device functionality (Private[x] Public[x])
[x]Connected Devices Platform (Private[x] Public[x])
[x]Core Networking (Private[x] Public[x])
[_]Core Networking Diagnostics (Private[_] Public[_])
[x]Cortana (Private[x] Public[x])
[x]Delivery Optimization (Private[x] Public[x])
[x]Desktop App Web Viewer (Private[x] Public[x])
[x]DiagTrack (Private[x] Public[x])
[x]DIAL protocol server (Private[x] Public[_])
[_]Distributed Transaction Coordinator (Private[_] Public[_])
[x]Email and accounts (Private[x] Public[x])
[x]File and Printer Sharing (Private[x] Public[x])
[_]File and Printer Sharing over SMBDirect (Private[_] Public[_])
[x]Firefox (Private[_] Public[_])
[x]Get Help (Private[x] Public[x])
[_]HomeGroup (Private[_] Public[_])
[_]iSCSI Service (Private[_] Public[_])
[_]Key Management Service (Private[_] Public[_])
[x]mDNS (Private[x] Public[x])
[_]Media Center Extenders (Private[_] Public[_])
[x]Microsoft Content (Private[x] Public[x])
[x]Microsoft Edge (Private[x] Public[x])
[x]Microsoft family features (Private[x] Public[x])
[x]Microsoft Pay (Private[x] Public[x])
[x]Microsoft People (Private[x] Public[x])
[x]Microsoft Photos (Private[x] Public[x])
[x]Microsoft Store (Private[x] Public[x])
[x]Narrator (Private[x] Public[x])
[x]NcsiUwpApp (Private[x] Public[x])
[_]Netlogon Service (Private[_] Public[_])
[x]Network Discovery (Private[x] Public[x])
[x]Office (Private[x] Public[x])
[_]Opera Internet Browser (Private[x] Public[_])
[_]Opera Internet Browser (Private[_] Public[x])
[_]Opera Internet Browser (Private[x] Public[_])
[_]Opera Internet Browser (Private[_] Public[x])
[_]Opera Internet Browser (Private[x] Public[_])
[_]Opera Internet Browser (Private[x] Public[_])
[_]Opera Internet Browser (Private[x] Public[_])
[_]Opera Internet Browser (Private[x] Public[_])
[_]Opera Internet Browser (Private[_] Public[x])
[x]Pale Moon (Private[x] Public[_])
[_]Performance Logs and Alerts (Private[_] Public[_])
[x]Proximity Sharing (Private[x] Public[x])
[x]Recommended Troubleshooting (Private[x] Public[x])
[x]Remote Assistance (Private[_] Public[_])
[x]Remote Desktop (Private[_] Public[_])
[_]Remote Desktop (WebSocket) (Private[_] Public[_])
[_]Remote Event Log Management (Private[_] Public[_])
[_]Remote Event Monitor (Private[_] Public[_])
[_]Remote Scheduled Tasks Management (Private[_] Public[_])
[_]Remote Service Management (Private[_] Public[_])
[_]Remote Shutdown (Private[_] Public[_])
[_]Remote Volume Management (Private[_] Public[_])
[_]Routing and Remote Access (Private[_] Public[_])
[_]Secure Socket Tunneling Protocol (Private[_] Public[_])
[_]Snappy Driver Installer (Private[x] Public[_])
[_]Snappy Driver Installer Origin (Private[x] Public[_])
[_]SNMP Trap (Private[_] Public[_])
[x]Spybot 3 (Private[x] Public[x])
[_]SRWare Iron (Private[x] Public[_])
[_]SRWare Iron (Private[_] Public[x])
[x]Start (Private[x] Public[x])
[x]Store Experience Host (Private[x] Public[x])
[x]Take a Test (Private[x] Public[x])
[_]TPM Virtual Smart Card Management (Private[_] Public[_])
[_]Virtual Machine Monitoring (Private[_] Public[_])
[x]Waterfox (Private[x] Public[_])
[x]Wi-Fi Direct Network Discovery (Private[_] Public[x])
[_]Windows Calculator (Private[_] Public[_])
[_]Windows Camera (Private[_] Public[_])
[_]Windows Collaboration Computer Name Registration Service (Private[_] Public[_])
[_]Windows Default Lock Screen (Private[_] Public[_])
[_]Windows Defender Firewall Remote Management (Private[_] Public[_])
[x]Windows Defender SmartScreen (Private[x] Public[x])
[x]Windows Device Management (Private[x] Public[x])
[x]Windows Feature Experience Pack (Private[x] Public[x])
[_]Windows Management Instrumentation (WMI) (Private[_] Public[_])
[_]Windows Maps (Private[_] Public[_])
[_]Windows Media Player (Private[_] Public[_])
[_]Windows Media Player Network Sharing Service (Private[_] Public[_])
[_]Windows Peer to Peer Collaboration Foundation (Private[_] Public[_])
[_]Windows Remote Management (Private[_] Public[_])
[_]Windows Remote Management (Compatibility) (Private[_] Public[_])
[_]Windows Search (Private[_] Public[_])
[x]Windows Security (Private[x] Public[x])
[x]Windows Shell Experience (Private[x] Public[x])
[x]Wireless Display (Private[x] Public[x])
[_]Wireless Portable Devices (Private[_] Public[_])
[x]WLAN Service - WFD Application Services Platform Coordination Protocol (Uses UDP) (Private[x] Public[x])
[x]WLAN Service - WFD Services Kernel Mode Driver Rules (Private[x] Public[x])
[_]Work or school account (Private[_] Public[_])
[_]Xbox Game Bar (Private[_] Public[_])
[_]Xbox Game Bar Plugin (Private[_] Public[_])
[_]Xbox Game UI (Private[_] Public[_])
[_]Xbox Identity Provider (Private[_] Public[_])
[_]Your account (Private[_] Public[_])
[_]Your Phone (Private[_] Public[_])
--
Sometimes you need to see what others have as setting to understand them.

[Big Al]

Did you hand type that all in?

--
Linux Mint 19.3 64bit, Dell Inspiron 5570, Quad Core i7-8550U

[Mayayana]

"Big Al" <Big...@invalid.com> wrote

| On 10/28/20 1:43 AM, this is what Arlen Holder wrote:
| > 1. Win+I
| > 2. Update & Security > Windows Security > Firewall & network protection
| > 3. "Allow an app through firewall"
| >
| > Now what?

I'm curious about this. I recently set up a Win10
laptop, did a bit of research, and I think I installed
Tiny Firewall. So far it's been fine, even though I
can't be certain Win10 spyware isn't getting through.

But even before Win10 I've never used the Windows
firewall, partly because the config is so complicated.
With other firewalls it's just a closed gate unless I
want to let something go through. Very simple. Is
there a reason to prefer the Windows firewall on Win10?

[Sjouke Burry]

Yep. It allows M$ to do just as they please.
With a free operating system you are the product.

[Arlen Holder]

On Wed, 28 Oct 2020 07:28:47 -0400, Big Al wrote:

> Did you hand type that all in?

While almost everything I do is from the Run box, e.g.:
o Win+R > netsh advfirewall export "%userprofile%\Desktop\wf.wfw" {control+shift+enter}
o Win+R > %comspec% /k netsh advfirewall show allprofiles {control+shift+enter}
o Win+R > %comspec% /k netsh firewall set logging %systemroot%\system32\LogFiles\Firewall\pfirewall.log 4096 ENABLE {control+shift+enter}
o Win+R > %comspec% /k netsh advfirewall show currentprofile {control+shift+enter}
o Win+R > vim.exe C:\Windows\system32\LogFiles\Firewall\pfirewall.log {control+shift+enter}
etc. [Note: The {control+shift+enter} runs the command as admin.]

The firewall GUI allows for manual copy & paste of its entries:
o Win+R > wf.msc
WindowsDefenderFirewall:Action > Export Policy > wf.wfw
or
o %windir%\system32\wf.msc
Copy and paste as desired.
--
Usenet contains good advice from purposefully helpful people.

[Big Al]

I was hoping Covid was not giving you that much spare time. LOL

[Arlen Holder]

On Wed, 28 Oct 2020 15:54:51 -0400, Big Al wrote:

> I was hoping Covid was not giving you that much spare time. LOL

Do you need me to help you with how to copy and paste?
o You can use control+c and control+v which works rather efficiently.

Nonetheless, the point of this thread is to ask others what they see.
o What do you see that's the same or different from what I see?

[Arlen Holder]

Update:

I ran a search of Windows freeware firewalls to replace or augment
the existing Windows 10 firewall (which I simply do not understand).

I found these listed most in the alt.comp.freeware newsgroup:
a. TinyWall <https://tinywall.pados.hu/download.php>
b. Evorim <https://www.evorim.com/en/free-firewall>
c. Windows Firewall Control <https://binisoft.org/wfc>
d. Privatefirewall <https://www.privacyware.com/personal_firewall.html>
e. Comodo Free Firewall <https://www.wilderssecurity.com/threads/comodo-firewall-privacy-intrusion.181922/>
f. Kerio <http://www.privacyware.com/personal_firewall.html>

Skimming the few dozen threads, it seems two are most often discussed:
a. TinyWall <https://tinywall.pados.hu/download.php>
b. Evorim <https://www.evorim.com/en/free-firewall>

Here is my syslog for TinyWall installation:

A. TinyWall version 3.0
1. <https://tinywall.pados.hu/download.php>
2. <https://tinywall.pados.hu/files/TinyWall-v3-Installer.msi>
Archive: [x:\archive\network\firewall\tinywall\TinyWall-v3-Installer.msi]
Name: TinyWall-v3-Installer.msi
Size: 1495040 bytes (1460 KiB)
SHA256: 9E4AE5698A2A196BBB5754D191BE14EA3B9121B1EFC3356306DA2847AE9FE927
3. Kill network gateway
4. Doubleclick TinyWall-v3-Installer.msi
TinyWall only allows network traffic that you have explicitly
whitelisted AFTER installation. [Next]
[x]I accept the terms in the License Agreement [Next]
Install TinyWall to: C:\Program Files (x86)\TinyWall\
Change to: C:\app\network\firewall\tinywall\ [Install]
5. TinyWall Setup:
The installer has encountered an unexpected error installing this package.
This may indicate a problem with this package.
The error code is 2503. [OK]
<https://i.postimg.cc/gk3KxpLB/firewall01.jpg>

Here is my syslog for Evorim installation:

Evorim 2.5.6
1. <https://www.evorim.com/en/free-firewall>
2. <https://www.evorim.com/download/freefirewall-setup.exe>
Archive: [x:\archive\network\firewall\evorim\freefirewall-setup.exe]
Name: freefirewall-setup.exe
Size: 41465144 bytes (39 MiB)
SHA256: B4CDF4053D5F58788B7DE565DF71CE619BCC476162E50344859FD5213F6C4A30
3. Kill network gateway
4. Doubleclick freefirewall-setup.exe
Administrator rights are required for a full installation.
You are prompted for permission during the installation.
[x]Express installation
I changed that to:
[_]Express installation > [Next] [Accept]
Directory for the installation: C:\Program Files\Evorim\Free Firewall
Browse: C:\app\network\firewall\evorim [Next]

Note that it phones home (so I'm glad I killed the gateway).
A more recent version could not be found > [Install]

The installation is being prepared.
The installation has been started.
A system restore point is being prepared.
A system restore point is created. Please wait ....
System restore point was successfully created.
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\license_de.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\license_en.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\FirewallSvc32.exe
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\FirewallSvc64.exe
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\efwtc32.dll
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\efwtc64.dll
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\resources\app.asar
Links created: Free Firewall
Links created: Free Firewall
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\jsoncpp.license.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\lz4.license.txt
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\license.thirdparty.html
File successfully extracted and copied to target:
C:\app\network\firewall\evorim\components\zlib.license.txt
System restore point is closed.
Installation successful.
[Exit]

5. A desktop shortcut was created:
Free Firewall.lnk
TARGET: C:\app\network\firewall\evorim\FreeFirewall.exe
STARTIN: C:\app\network\firewall\evorim

Using the rightclick "SendTo" menu, move that shortcut where it belongs:
move "Free Firewall.lnk" "c:\menu\network\firewall\evorim.lnk"

Such that the taskbar accordion foldout cascade menu is populated:
Tasbar > menu > network > firewall > evorim

6. Click on that shortcut in the firewall menu.
Note it supposedly starts as "Disabled"
But then click on (?) > [Read FAQs]
Holy shit. It bypassed my gateway killswitch!
I had been expecting an offline FAQ readme, but it connected!
<https://www.evorim.com/en/free-firewall#faq>
How the hell did it do that?
Maybe I didn't remember resetting the killswitch?
Hmm. I need to test that later.

Anyway, documentation is here:
FAQ: <https://www.evorim.com/en/free-firewall#faq>
DOC: <https://www.evorim.com/en/freefirewall-documentation>

7. It starts off with four five main super options:
Start, Applications, Services, Zones, Events, Tools

8. I clicked on the [Start] left main menu:
Applications:
Disabled (Network traffic is not monitored and not controlled.)
Enabled (Network traffic is monitored an all programs are controlled.)
Gaming (All notifications are disabled and games get network access.)
Blockade (Network traffic is blocked for all programs and services.)
Total: 72
Applications: 37
Services: 35
Monitored programs: 28
Blocked programs: 0
Allowed programs: 44

I switched the "Start" choice to "Enabled".

9. I clicked on the [Applications] left main menu:
There were 38 entries each with a default choice, e.g.,
Vi Improved - A Text Editor [Ask for permission]
Cortana [Allow all]
Opera Internet Browser [Allow all]

Where the choices are:
Allow all
Deny all
Aks for permission
Apply rules
Edit rules
Tools > {Hide entry,Start the program,show directory,copy path to clipboard}

10. It's gonna take a while to figure the setup out.
<https://i.postimg.cc/2yRqYZK5/firewall02.jpg>

The key question is how to approach firewall setup in the first place.
o Do we simply accept everything at first until we get the hang of it?