search

wokhan / WFN

Windows Firewall Notifier extends the default Windows embedded firewall by allowing to handle and notify about outgoing connections, offers real time connections monitoring, connections map, bandwidth usage monitoring and more...
GNU General Public License v3.0
603 stars 95 forks source link

Blocking Rules distributed via Group Policy not recognized by Notifier #152

Open gepardec-wf opened 1 year ago

gepardec-wf commented 1 year ago

Hi Wokhan,

What works as expected: WFN shows a notification, when an outgoing connection of an application is blocked because of a block all policy. after adding an explicit blocking rule to the windows firewall (manually or via WFN notifier) the notifier stops to show notifications.

But: It does not work with blocking rules that are distributed by local group policy. There may be an actual active firewall rule that blocks those connections, but WFN does not seem to recognize it and continues to show notifications. in the wf.msc UI such rules are listed with source = local group policy alongside with the normal rules (source = local setting).

Would you consider fixing that, or is it too much of an edge case?

Greetings!

wokhan commented 1 year ago

Hi (again), Thanks for this - this is indeed an edge case but still I have to look at this since it's not expected at all. It seems we missed something when working on the rules retrieval! Adding this to the backlog (but not promising it will be fixed for 2.6...). Regards