Why Windows Firewall does not block outgoing traffic?

windows-7 windows networking firewall
8,049

The Windows 7 firewall can.

The Windows XP firewall it seems couldn't block outgoing How do I block all outgoing ports in Windows XP firewall?

The Windows 7 Firewall can block outgoing

see where it says "outbound rules" outbound means outgoing

enter image description here

And look at the text under domain,private and public

It states the default policies.. so for inbound, it's a whitelist (that's stricter), for outbound it's a blacklist (that's more lenient).

A blacklist means let everything through unless it's listed to not be let through.

A whitelist means block everything unless it's listed to be let through.

So a whitelist would be more permissive. Like what at a real life event would be called 'by invitation only'. So the packet arrives if it's on the list it's allowed in and the firewall has done its thing for that packet, if the packet is not on the list then continue with the instruction to just block everything. A blacklist is equivalent to when everybody is invited unless they're on a list of people not allowed to come. So a packet arrives, if it's on the blacklist then you block it and the firewall has done its thing for that packet, otherwise, continue to the next instruction which is to allow everything.

For outbound, the default of a blacklist enables you to browse the web easily. The outbound rule is by default the more permissive one.

For inbound, the default is a whitelist.. So if you run any servers(i.e. listening), then a client(i.e. computer initiating a connection) can only reach them, if you have allowed it to.

You can change these policies. And you can add or remove or change rules in the list of rules, for inbound or for outbound.

enter image description here

Share:
8,049

Related videos on Youtube

user427378
Author by

user427378

Updated on September 18, 2022

Comments

  • user427378
    user427378 over 1 year

    I have noticed that Windows Firewall only blocks incoming traffic, for example, if I tried to listen on port 12345, it will display a warning dialog asking me if I want to allow it.

    However, if I tried to connect to any IP on any port it will not display any warning. So does anyone knows why it does not block outgoing traffic also?

    I am using Windows 7 Ultimate 64-bit.

    • CharlieRB
      CharlieRB about 9 years
      What research have you done about how the firewall works?
    • Tetsujin
      Tetsujin about 9 years
      most consumer firewalls are incoming only by default - it saves confusion for the average user, who would otherwise just click 'yes' to everything, until they got sick of it & switched it off altogether.
    • barlop
      barlop about 9 years
      @Tetsujin not just the average user, I think even techie users, if their firewall kept bothering them would click yes yes yes and turn it off altogether.
    • barlop
      barlop about 9 years
      @Tetsujin right that sounds like a wise alternative to software that frequently prompts you over outgoing connections, it seems you wouldn't want that on your windows machine. What software are you using on your MAC, and when you say outgoing only, do you mean blocks incoming? it sounds like (understandably) you don't have and don't want frequent prompting on your mac either. That was my point. Not only the average user wouldn't want it but the techie or above average techie, generally wouldn't want it either.
    • TechLife
      TechLife about 9 years
      What I tell you is dont use windows firewall. It has vulnerabilities. I prefer using a built in firewall in an Internet Security suit. which will not ask you each time for each app. Kaspersky is love ...
    • Tetsujin
      Tetsujin about 9 years
      @barlop I use Little Snitch on Mac - & yes, until you build up its ruleset it does get in your face, but I prefer safe to sorry
  • user21820
    user21820 over 7 years
    You got your default policies the wrong way around.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Possible to find out what's using javaw.exe to connect outside the network?
How to quickly Enable/Disable Internet Traffic so that it ONLY goes to ONE program?
How can I restrict windows 7 to only use the local subnet, but block the internet
How to block all traffic but oneΒ IP in Windows Firewall?
Windows firewall blocks remote desktop with custom port
How to configure Windows Firewall to allow all ports in use by IIS Express
How to display all accessible domains on Windows 7?
TCP/IP Forwarding in Windows Vista and Above
Unable to connect to windows shares without restart
Windows 7 can't connect via ethernet to Airport Extreme