Hello,
I would like to block an application form accessing the internet, but allow in the localnetwork(subnet only in windows xp firewall scope) as it is mandatory for the application to access some sort of network interface. I tried with Loopback zone by setting to block all network application excluding loopback zones in source and destination . I also tried with Host name by putting my host name in source and destination fields.
Please Help
Give the application the following rules and make sure Rule #2 is below Rule #1:
Rule #1:
Action: Allow
Protocol: IP
Direction: In or Out
Description: Leave blank or choose your own description.
Source Address
Type: IPv4 Subnet Mask
IP: Depends on your network, usually 192.168.0.0, 172.16.0.0 or 10.0.0.0
Mask: Depends on your network, if 192.168.0.0/24 then the subnet mask is 255.255.255.0, if 172.16.0.0/16 then the subnet mask is 255.240.0.0 and if 10.0.0.0/8 then the subnet mask is 255.0.0.0
Destination Address (Same as Source Address since we specify the whole network)
Type: IPv4 Subnet Mask
IP: Depends on your network, usually 192.168.0.0, 172.16.0.0 or 10.0.0.0
Mask: Depends on your network, if 192.168.0.0/24 then the subnet mask is 255.255.255.0, if 172.16.0.0/16 then the subnet mask is 255.240.0.0 and if 10.0.0.0/8 then the subnet mask is 255.0.0.0
IP Details
IP Protocol: Any
Rule #2:
Action: Block
Protocol: IP
Direction: In or Out
Description: Leave blank or choose your own description.
Source Address
Type: Any Address
Destination Address (Same as Source Address since we specify the whole network)
Type: Any Address
IP Details
IP Protocol: Any
The above should give the application in question access to the local area network but nothing beyond that, it won’t have access to the localhost so if the application needs access to the localhost you must make a rule for that too.