How can I setup windows 7 firewall so that it blocks ALL inbound and outbound traffic of all kinds, unless I am connected to a network that is designated in network options as public?
I'd like to block Home and Private. Thanks for any advice.
The following worked when I tried it.
- Open the Start menu.
- In the search box, search for "Windows Firewall."
- In the search results, select "Windows Firewall with Advanced Security."
- In the "Overview" section, check to see which profile is active. By default, it should "Private Profile."
- Next, click on the link marked "Windows Firewall Properties."
- Select the tab labeled "Private Profile."
- Make sure that "Firewall State" is set to "On (recommended)."
- Under "Inbound Connections" click on the drop-down menu and select "Block all connections."
- Under "Outbound Connections" click on the drop-down menu and select "Block."
- Next to "Protected network connections," click the button marked "Customize."
- Make sure that all of the check boxes are marked, especially "Local Area Connection" and "Wireless Network Connection" (if present).
- Click the "OK" button. When that dialog closes, click the "OK" button on the next dialog.
On Windows 7 Home Premium:
Start
| Control Panel
| Firewall
| "Advanced Settings"
"Windows Firewall with Advanced Security"
WindowInbound Rules
and New Rule
Custom
All Programs
Any
Any IP Address
(both local
and remote
)Block the connection
Domain
and Private
(Untick Public
)Click on Finish
And now you have an inbound Rule that blocks All Application from accessing any IP on any Port on Domain and Private (Home or Work or Private Networks)
And now you have to make exactly the same rule under "Outbound Rules"
Although Windows Firewall does block a lot of things, it does not block ALL traffic. Barlop has added that WireShark still detects some traffic in and out of the system even when everything meant to be blocked using either method.
Rather than navigate through all these pages simply click on the Start button... type CMD in the search field... click Search. You'll see cmd.exe in the PROGRAM field. Click on cmd.exe. Your DOS box will come up. In it type ipconfig /release and hit Enter. This will shut down all inbound and outbound traffic.
To get inbound and outbound traffic running again simply run up this DOS box again ( I have my DOS box icon pinned to the Taskbar at the bottom of the screen ) and now type in
ipconfig /renew
and hit enter. All comes back to normal.