Navigation section

Windows 7 Another Windows 7 Firewall Question

M

mjr161

New Member
Joined
Aug 4, 2010
Messages
4
Ok so I have Win7Pro machine here that connects to the local network (home) as well as remotely via VPN using a native Win7 VPN connection. I am going to lay out two scenarios, and I'm hoping both are possible... one is ideal and one is easily workable for me.

Ideal - I have two programs that need to route through the VPN and only the VPN. I want to block these programs from accessing the internet outbound through the home network completely and connect only through the VPN when it is active. This will apply to all ports. The rest of the applications can connect to the internet through the home network and other local network resources to maximize speed and minimize sharing issues.

Workable - Same as above, but would need to route ALL outbound internet traffic through the VPN and completely refuse any connection to the internet outbound from the home network. The only exception would be for file sharing, which I'll need to have access to the home network for.

Is this doable with the stock Win7 VPN client and Windows Firewall? If so, can you explain how?
 


Solution
T
Sure.

First, go to Firewall then Zones tab.

Make sure your network adapter (the line with entry type=network) is in the internet zone - not trusted.
If you have other machines on your local lan, you can add their address or machine name and assign them to the trusted zone here.
Localhost should also be assigned to trusted.
Add the VPN server ip address here and assign it to trusted zone also.

---------

Now go to program control part of the software, then programs tab.

For the two programs you like to connect only through VPN, make sure that only the Access/Trusted column has a green check. Make sure Access/Internet has a red x and also the two server parts have a red x.

Set like this, it will be impossible for those two programs...
Sort by date Sort by votes
I have a copy of ZoneAlarm. Can you explain how to create the rules for that? I've toyed with it for hours not being able to get it just right.
 


Upvote 0 Downvote
Sure.

First, go to Firewall then Zones tab.

Make sure your network adapter (the line with entry type=network) is in the internet zone - not trusted.
If you have other machines on your local lan, you can add their address or machine name and assign them to the trusted zone here.
Localhost should also be assigned to trusted.
Add the VPN server ip address here and assign it to trusted zone also.

---------

Now go to program control part of the software, then programs tab.

For the two programs you like to connect only through VPN, make sure that only the Access/Trusted column has a green check. Make sure Access/Internet has a red x and also the two server parts have a red x.

Set like this, it will be impossible for those two programs to do any networking at all, except to the trusted zone....and you already added the VPN server to trusted....so this is great.

----------

If you need any other help with configuring, not a problem...
 


Upvote 0 Downvote
Solution
You must log in or register to reply here.

Similar threads

W
  • Solved
Windows 7 Win 7 firewall blocks autherised programes & websites
Replies
2
Views
732
wioz
W
B
  • Solved
Windows 7 Windows 7 - Cannot access only ONE of my computers on home network.
Replies
4
Views
3K
DarrinR
D
T
  • Question Question
Windows 7 Windows 7 Firewall GPO Help Please
Replies
1
Views
2K
thermaltake
T
1
  • Solved
Windows 7 Windows 7 firewall Block domain
Replies
2
Views
2K
1958stonefox
1
A
  • Question Question
Windows 7 NIC specific application setting in Windows 7
Replies
1
Views
1K
Saltgrass
Saltgrass
Back
Top