[Question] How to assign a range of ports to an IP [Feature] One rule for IP and range ports.

henrypp / simplewall

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

GNU General Public License v3.0

6.32k stars 490 forks source link

[Question] How to assign a range of ports to an IP [Feature] One rule for IP and range ports. #1394

Open gitdarktable opened 1 year ago

gitdarktable commented 1 year ago

Hi, I am connecting to an remote FTP server with a list of 500 ports and a single IP address.

When I configure a single IP address it connects to any port, and if I assign a range of ports it connects to any IP address.

Example:

Adding the rule:

100.100.100.100 60000-60500

It does not force the port range to that remote IP address.

How could it be done? In the manual I only see IP addresses with - ONLY ONE- port.

Thank you.

TontyTon commented 1 year ago

You can't do that using one rule. You have to use two rules, one with the ip allowed, and another rule with all ports other than required blocked. But this wouldn't be useful if you want to allow other ips over ports, other than these.

gitdarktable commented 1 year ago

Indeed, as you point out, you have to create two rules blocking with IP and ports separately.

It will be used only with one IP, there are no more problems of use.

I request it as a suggestion now not allowed:

Create a single rule IP:port-port

example:

100.100.100.100:60000-60500

Thanks!

TontyTon commented 1 year ago

This and range of ports to range of IPs too. Both would be very helpful.

@henrypp would these two be possible?

Kannnnng commented 1 year ago

I have the same problem. This requirement is often encountered in daily work. If it can be realized, it will be very helpful for many such scenarios

Cris-- commented 7 months ago

As example this would be also a nice to have: 192.168.0.1:*