Not what you are looking for? Ask the experts!
Block all internet traffic by default and add manual exceptions
Hello,
I would like to block all my internet traffic by default and then I want to add programs manual which needs the internet. I have already created a custom rule which blocks all my inbound and outbound connections:
But how can I now add program exceptions, because I don't want to add IP's just programs?
Or is there even a better way to achieve what I want?
Regards,
P4assion
Replies
Re: Block all internet traffic by default and add manual exceptions
Turns off Automatic Program Control. If you have selected this option, you must manually specify the Internet access settings for all inbound traffic and outbound traffic in the firewall alerts.
https://support.norton.com/sp/en/us/norton-security-with-backup/22.7.0.76/solutions/v15457333
Symantec recommends that the Automatic Program Control feature remains set to On. By turning it off, you might make an incorrect decision that can allow malicious programs or block critical Internet programs and functions.
With Automatic Program Control enabled, in addition to checking the characteristics of the traffic itself, the Smart Firewall also identifies the program requesting access and either allows it or blocks it, based on the trust level that Symantec has assigned to the program through actual testing. A hash is used to prevent a malicious program from masquerading as a legitimate one. What criteria do you use in deciding if a connection is suspicious? Smart firewall allows necessary programs to access the internet, but refuses to allow unauthorized traffic in or out. Smart firewall runs on automatic, and makes all (most) the necessary decisions without user having to respond to alerts or questions. What criteria do you use in deciding if a connection is suspicious? (credit Community)
You may block net traffic thru your network adapter.
Curious, what do you perceive as lacking in Norton Smart Firewall. What criteria will you use in deciding if a connection is suspicious?
http://s31.postimg.org/4i08du9rv/screenshot.png
Re: Block all internet traffic by default and add manual exceptions
I don't want to deactivate any of Norton functionalities.
I just want to block by default all traffic through Norton's settings, I don't decide whether it's a good connection or bad connection I only want to decide if the program gets internet or not. So as you can see in my sketch:
In theory, I have done the "Internet or No Internet" already with my:
custom rule which blocks all my inbound and outbound connections
So the question would be how do I now add those exceptions that the program is getting the internet but without trusting the connection so that Norton still uses its antivirus and other functionalities.
Re: Block all internet traffic by default and add manual exceptions
Re: Block all internet traffic by default and add manual exceptions
That's exactly what Norton has done, blocked everything and then allowed only the necessary programs and processes.
There are so many windows processes that need access, very few people would be able to figure them all out and if you did you would end up with basically the same rules already made. Norton has some very knowledgeable and talented experts and are working with many years of experience, if you think you can re-invent the wheel and do a better job then them, good luck to you. Just keep in mind that a mistake on your part may make your system more vulnerable or leave your system not operating properly.
Dave
Re: Block all internet traffic by default and add manual exceptions
As DaveH said, a smart firewall like the Norton Firewall will, by default, block all traffic except for known good programs. No user intervention required.
© 2021 NortonLifeLock Inc. All rights reserved.
Re: Block all internet traffic by default and add manual exceptions
That's exactly what Norton has done, blocked everything and then allowed only the necessary programs and processes.
There are so many windows processes that need access, very few people would be able to figure them all out and if you did you would end up with basically the same rules already made. Norton has some very knowledgeable and talented experts and are working with many years of experience, if you think you can re-invent the wheel and do a better job then them, good luck to you. Just keep in mind that a mistake on your part may make your system more vulnerable or leave your system not operating properly.
Dave