I am on a limited data plan when I travel and I use my computer connected on internet.
I would like to block everything, including windows update and other software updates.
I would like to allow only one web browser, firefox, chrome or opera.
How can I set up a config like this temporarily ?
I’m not an expert.
Go to the advanced settings → firewall settings and enable “Do NOT show popup alerts” and change the dropdown to block requests. This will block anything that doesnt have a rule created for it.
Now to create the rules for your applications.
To allow your browser go to advanced settings → firewall settings → applications rules then add whatever browser you want to allow access
Add a new rule and give it the allow allowed application ruleset
For windows update im not exactly sure which processes need access to the internet so maybe someone else can give us some insight. I think the main exe is under C:\Windows\System32\wuauclt.exe but it also uses svchost.exe.
The process will be the same for adding any other application you want to allow access for.
I’ll give tell you each rule that you need to block everything except DNS and web browsers. First go to add > browse > file groups > all applicatoins > use ruleset blocked application. Next add another rule and click browse > running applicaitons > select svchost.exe > use a custom ruleset > add allow UDP out destination port 53 then add another rule to block IP In or out. Then the last rule select web browsers file group and select outgoing only. Your rules should look like the ones in the attached screenshot. Heres the help documentation on adding firewall rules Application Rules, Firewall Protection, Best Firewall | Internet Security v7.0