Deny application access to external IPs only?
I am using F-Secure 9.32, and I cannot find out how to configure a firewall rule that will prevent an application making an outbound connection to external IPs, but leave it able to access internal ones.
In Application Control, I can only allow or deny for all incoming or outbound connections.
Where can I set more detailed rules per application?
NikK Posts: 935 Rock Star
I can't answer your question, but hopefully give you some useful information.
This is a Home Security board and F-Secure Home products(Internet Security) uses the Windows Firewall, but I assume you have Client Security? a Business product. I'm not familar with the Business products but I know that Client Security 9 is an old and unsupported product. More info in the End-point Security board:
If you have a standalone installation of Client Security - important upgrade information:
If the firewall in Client Security works like it did in Internet Security 2012 you might found some help here with adding a firewall rule with an IP range or subnet:
In general to allow only a local subnet this can be configured with the help of a network prefix range, CIDR, for example 192.168.1.1/24 http://www.aboutmyip.com/AboutMyXApp/SubnetCalculator.jsp?ipAddress=192.168.1.0&cidr=24
And in Windows Firewall you can also enter LocalSubnet instead of an IP or IP range.
Windows Firewall by default allows all outbound connections. You can change the setting for "Outbound connections" from "Allow (default)" to Block. But it's difficult to manually setup without help. Because of that I highly recommend Windows Firewall Control http://www.binisoft.org/wfc.php to more advanced users, it you want full control of all outbound connections.5 Like
Thank you, that was useful!
I am provided F-Secure Client by my organisation, I didn't realise I hadn't updated it in so long. I will get the latest version and try again, but if the options are not available its good to know its designed to co-operate with Windows Firewall. I have always left security to one product only at a time assuming they rarely work well together, but that might be a lingering impression from early Antivirus sofware.