IP Addreses \\ Filter does not block traffic (Allowed all)

[darkanubis0100]

There is a very strange bug, too strange I would say.

The whole Firewall works apparently fine with the rules and stuff until I start touching the "Applications Groups". For some reason that I don't quite understand (I'm sure you'll need logs but the file says "0 KB"), when I make a change in that menu (Network Throttling, Application to Child Processes, Traffic Blocking) the permissions of the processes stop working.

Example, I have the msedge.exe in Deny, the blocking works fine and nothing in the browser connects to the Internet until I move the Bandwidth Limiter, from that moment all the msedge.exe traffic starts to go to ALLOWED even if I put it in "Deny" or remove the entry from the registered processes. And it is not only with that, it applies to all processes, even if I put DENY to all of them at the same time.

It is curious because I have not been able to reproduce the problem with other tabs (Like the IP Address tabs that for some reason does not block the connections to the set IP's. How does that work exactly?)

The only way I can solve this problem is to manually delete FortFirewall.config since I can't modify it because it is in binary.

I had done a test running both the service and the GUI as administrator using the fully reset Firewall, however the results were exactly the same. I could notice that if you delete an entry from the allowed programs, it disappears from the GUI but in the FortFirewall.config the entry still exists (And who knows if it is ALLOWED or not).

[tnodir]

Can you please describe step by step from clean installation, how to reproduce the bug?

It's unclear what should we change in AppGroups to reproduce it.

[darkanubis0100]

Can you please describe step by step from clean installation, how to reproduce the bug?

It's unclear what should we change in AppGroups to reproduce it.

I update the title, I saw what the problem is. If you have the applications either blocked or allowed, the moment you go to "IP Address" and uncheck the "Include All" from either tab, all traffic is allowed. By checking it again this problem is solved.

[darkanubis0100]

But now I have a problem, neither the IPs set to Exclude nor the zones are blocking the IPs.

For example, I did the test putting the IP of my Blog and also the 1.1.1.1, all gave answer in TCP as well as UDP and ICMP.

[tnodir]

the moment you go to "IP Address" and uncheck the "Include All" from either tab, all traffic is allowed. By checking it again this problem is solved.

See "What is the difference between "Internet Addresses" and "Allowed Internet Addresses" on the "IP Addresses" tab?".

[tnodir]

For example, I did the test putting the IP of my Blog and also the 1.1.1.1, all gave answer in TCP as well as UDP and ICMP.

Options: "IP Addresses" has 2 tabs: "Internet Addresses" & "Allowed Internet Addresses". Which tab are you editing?

[darkanubis0100]

I had indeed read that, to no avail. I have tried to do it using both tabs at the same time and then one in each one at the same time, it does not work.

The IPs put in the zone are not being blocked either (I did the test by putting the same IP shown in the image, without success).

[tnodir]

1. That 2 addresses in the screenshot are same, so you can remove the 2-nd one (1.1.1.1/32).
2. Also please show a screenshot of "Internet Addresses" tab.

[darkanubis0100]

1. That 2 addresses in the screenshot are same, so you can remove the 2-nd one (1.1.1.1/32).
2. Also please show a screenshot of "Internet Addresses" tab.

Problem apparently solved. I reset the IP Address option to its default values and then added the zones exclusively under Allowed Internet Address

[darkanubis0100]

Well, problem fixed. Thanks for the support @tnodir