Note: I have two network adapters in my pc, it connects to two separate networks. One is "private" the other is "restricted".
I block all inbound traffic from the restricted network while allowing only necessary traffic from the private one.
I turned off automatic program control because I like to get alerts and make my own decisions. The problem
is that the rule I created seems to be ignored.
I received an alert on the private network that "System" was trying to access the internet:
source: 10.0.0.9
destination: 10.255.255.255 / 255.255.255.255
port: netbios 137
First I tried to create a rule allowing netbios to the destination (using network address option) but got a message
that it was an invalid address.
Then I tried using the "network address" option to allow UDP on 137 to 10.0.0.0/255.0.0.0 but I get alerts
with the same as above. So I tried using 10.0.0.0/255.255.255.0 and still get alerts.
I created a couple more rules that kept telling me "the rule already exists". Well, if the rule exists why is it asking
me what to do?
Finally I tried allowing the communication based on address range: start 10.0.0.0 end 10.255.255.255 and I
still get the same alert as above.
How do I tell the firewall to allow IP 10.0.0.9 to send broadcast packets without using "allow to any computer"?