Vista - Vista Advanced Firewall broken?

10-28-2006

Hi All,

I'm trying to understand the behavior of the Windows Advanced Firewall in
Vista and it seems I'm just not getting it.

What I did:

- Wrote a small .NET 2.0 program with this code:

private void Form1_Load(object sender, EventArgs e)
{
WebClient webClient = new WebClient();
webClient.UploadString("http://www.apple.com", "test");
}

- Added a new Outbound Rule with the following settings:

Program: myapp.exe
Action: Allow the connections
Profile: All
Scope: Any, Any
State: Enabled

- Set the main Private Profile state to:
On
Inbound: Block (default)
Outbound: Block

What I expected:

Since the Firewall state (from the Monitoring panel) reads:

"Private Profile is Active"
"Windows Firewall is on.
"Inbound connections that do not match a rule are blocked."
"Outbound connections that do not match a rule are blocked."

...I expected that my app would be permitted to do the POST operation. I
have a rule that "matches", right? Which means, everything else is blocked,
but my program should be permitted, right?

But this is not what happens, my app is blocked - which is what happens when
I set the main switch to block all inbound and outbound - and don't have a
custom outbound rule.

So what's going on?

Any help or pointers appreciated.

thanks

Vista RC2 Build 5744

11-01-2006

No one out there has tried this? I'm really interested in knowing if this is
really broken.

"Daniel" wrote:

> Hi All,
>
> I'm trying to understand the behavior of the Windows Advanced Firewall in
> Vista and it seems I'm just not getting it.
>
> What I did:
>
> - Wrote a small .NET 2.0 program with this code:
>
> private void Form1_Load(object sender, EventArgs e)
> {
> WebClient webClient = new WebClient();
> webClient.UploadString("http://www.apple.com", "test");
> }
>
> - Added a new Outbound Rule with the following settings:
>
> Program: myapp.exe
> Action: Allow the connections
> Profile: All
> Scope: Any, Any
> State: Enabled
>
> - Set the main Private Profile state to:
> On
> Inbound: Block (default)
> Outbound: Block
>
> What I expected:
>
> Since the Firewall state (from the Monitoring panel) reads:
>
> "Private Profile is Active"
> "Windows Firewall is on.
> "Inbound connections that do not match a rule are blocked."
> "Outbound connections that do not match a rule are blocked."
>
> ..I expected that my app would be permitted to do the POST operation. I
> have a rule that "matches", right? Which means, everything else is blocked,
> but my program should be permitted, right?
>
> But this is not what happens, my app is blocked - which is what happens when
> I set the main switch to block all inbound and outbound - and don't have a
> custom outbound rule.
>
> So what's going on?
>
> Any help or pointers appreciated.
>
> thanks
>
> Vista RC2 Build 5744

10-28-2006	#1 (permalink)
Daniel n/a posts	Vista Advanced Firewall broken? Hi All, I'm trying to understand the behavior of the Windows Advanced Firewall in Vista and it seems I'm just not getting it. What I did: - Wrote a small .NET 2.0 program with this code: private void Form1_Load(object sender, EventArgs e) { WebClient webClient = new WebClient(); webClient.UploadString("http://www.apple.com", "test"); } - Added a new Outbound Rule with the following settings: Program: myapp.exe Action: Allow the connections Profile: All Scope: Any, Any State: Enabled - Set the main Private Profile state to: On Inbound: Block (default) Outbound: Block What I expected: Since the Firewall state (from the Monitoring panel) reads: "Private Profile is Active" "Windows Firewall is on. "Inbound connections that do not match a rule are blocked." "Outbound connections that do not match a rule are blocked." ...I expected that my app would be permitted to do the POST operation. I have a rule that "matches", right? Which means, everything else is blocked, but my program should be permitted, right? But this is not what happens, my app is blocked - which is what happens when I set the main switch to block all inbound and outbound - and don't have a custom outbound rule. So what's going on? Any help or pointers appreciated. thanks Vista RC2 Build 5744
My System Specs

11-01-2006	#2 (permalink)
Daniel n/a posts	RE: Vista Advanced Firewall broken? No one out there has tried this? I'm really interested in knowing if this is really broken. "Daniel" wrote: > Hi All, > > I'm trying to understand the behavior of the Windows Advanced Firewall in > Vista and it seems I'm just not getting it. > > What I did: > > - Wrote a small .NET 2.0 program with this code: > > private void Form1_Load(object sender, EventArgs e) > { > WebClient webClient = new WebClient(); > webClient.UploadString("http://www.apple.com", "test"); > } > > - Added a new Outbound Rule with the following settings: > > Program: myapp.exe > Action: Allow the connections > Profile: All > Scope: Any, Any > State: Enabled > > - Set the main Private Profile state to: > On > Inbound: Block (default) > Outbound: Block > > What I expected: > > Since the Firewall state (from the Monitoring panel) reads: > > "Private Profile is Active" > "Windows Firewall is on. > "Inbound connections that do not match a rule are blocked." > "Outbound connections that do not match a rule are blocked." > > ..I expected that my app would be permitted to do the POST operation. I > have a rule that "matches", right? Which means, everything else is blocked, > but my program should be permitted, right? > > But this is not what happens, my app is blocked - which is what happens when > I set the main switch to block all inbound and outbound - and don't have a > custom outbound rule. > > So what's going on? > > Any help or pointers appreciated. > > thanks > > Vista RC2 Build 5744
My System Specs

Similar Threads
Thread	Forum
Advanced firewall rules help please.	Vista security
Vista Firewall with Advanced Security	Vista General
Vista advanced firewall settings	Vista General
Vista Advanced Firewall	Vista security
Vista Advanced Firewall Config	Vista General