Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
F-Secure
F-Secure & Windows Firewall Control?
Message
<blockquote data-quote="piquiteco" data-source="post: 1032791" data-attributes="member: 96829"><p>You're welcome! I always try to show through screenshots to make it clear to understand and the person know that I am really telling the truth, I even record video if necessary, it is better for people to understand. There is that saying "A picture can be worth a thousand words" Yes these settings should work for you. But I will simplify it for you and answer your questions below. <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite110" alt=";)" title="Wink ;)" loading="lazy" data-shortname=";)" /></p><p></p><p>There is no specific reason for me to choose input and output. I went a little overboard with the settings, I'm a little hardcore, but when I start having problems I just go back to the default settings.<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite130" alt="(y)" title="Thumbs up (y)" loading="lazy" data-shortname="(y)" /></p><p></p><p>Yes, you are correct, you can have problems yes, even with local addresses like 127.0.0.1 I myself had problems with Acronis Anti-Ransomware after that because the service entry did not communicate with program that monitors running processes, the entry for the service was blocked, I had to release it. I suggest you follow this recommendation. In the Rules tab I suggest you use only Outbound (recommended) which is recommended by the WFC to create only output rules for new applications to allow or block like in this capture below, I will leave it in the spoiler to make it clearer and easier for you to adjust in your WFC.</p><p>[SPOILER="Outbound (recommended)"]</p><p>[ATTACH=full]273963[/ATTACH]</p><p>[/SPOILER]</p><p></p><p>In Secure Boot, the WFC automatically sets the High Filtering profile at system shutdown and at Windows Startup, network connections will be blocked until you change the profile to Medium or Low Filtering. Remember that this is done manually by you, and the icon is black when High Filtering is enabled, this means that everything is blocked and you have no internet access, so I suggest you leave Secure Boot unchecked.</p><p>[SPOILER]</p><p>[ATTACH=full]273966[/ATTACH]</p><p>[ATTACH=full]273965[/ATTACH]</p><p>[/SPOILER]</p><p></p><p>Yes, correct it protects the windows firewall from external tampering. When this feature is enabled, importing firewall rules when changing the filtering mode can only be done through the WFC. Note: Not always what it says is true, I have seen many times this Safe Profile box unchecked, even I check it afterwards, so the safe rules have important role over Safe Profile, or maybe some bug in WFC and I don't know and so the box unchecks itself.</p><p></p><p>Yes, and no at the same time, you can block yes but not automatically, unless you block it, it will notify anything that is going to access the internet, because you are in control, and you have to be careful it will ask everything that is going to connect to the internet, Windows services like svchost, other Windows services. I recommend first that you backup your Windows firewall settings and export all rule configuration directives created by the Windows firewall before enabling Secure Rules in the WFC.</p><p></p><p>Yes, that's why you have to backup all Windows firewall rules before you inhabit it Secure Rules see the screenshot in the spoiler the WFC notification it gives me when enabling Secure Rules.</p><p>[SPOILER="Warning: Do not activate if you do not know how to use it."]</p><p>[ATTACH=full]273967[/ATTACH]</p><p>[/SPOILER]</p><p></p><p>Yes, they are easy to identify because there is an FS prefix in front of the service or file name when you access the web, so it is simple. They always have an FS before the name e.g. fsmainui.exe and fsturnon.exe are legitimate F-secure processes.</p><p></p><p></p><p>Yes, the connections are secure, not signed, if I didn't misunderstand what you said. No the WFC does not show if the application is signed. But it is signed because I checked the F-secure files, all are signed, starting with the installer, if they were not signed I would not be using F-secure. Who signed it? I can not pass this information because I can compromise the security of the users that use F-secure and this post is public, I pass this information only by PM, but rest assured that F-secure is a well respected Finnish company that exists since 1988.</p><p></p><p>All of them have a name with initials FS before the process name as I mentioned above as an example the fsmainui.exe. You are very curious even hein [USER=99949]@a090[/USER], difficult to know and identify processes that you say obscure, I do not think the F-secure would do this, it can only collect telemetry to improve their products, they take the privacy of users seriously, the F-secure is a company in the security industry veteran, at least to date I have not seen any scandals them from them, then I ask that use quietly that is a reputable and reliable company.<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite130" alt="(y)" title="Thumbs up (y)" loading="lazy" data-shortname="(y)" /></p><p></p><p>You're welcome, Whenever you need us, we are always here in MT to share and solve the doubts of the members here in the forum.<img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite110" alt=";)" title="Wink ;)" loading="lazy" data-shortname=";)" /></p></blockquote><p></p>
[QUOTE="piquiteco, post: 1032791, member: 96829"] You're welcome! I always try to show through screenshots to make it clear to understand and the person know that I am really telling the truth, I even record video if necessary, it is better for people to understand. There is that saying "A picture can be worth a thousand words" Yes these settings should work for you. But I will simplify it for you and answer your questions below. ;) There is no specific reason for me to choose input and output. I went a little overboard with the settings, I'm a little hardcore, but when I start having problems I just go back to the default settings.(y) Yes, you are correct, you can have problems yes, even with local addresses like 127.0.0.1 I myself had problems with Acronis Anti-Ransomware after that because the service entry did not communicate with program that monitors running processes, the entry for the service was blocked, I had to release it. I suggest you follow this recommendation. In the Rules tab I suggest you use only Outbound (recommended) which is recommended by the WFC to create only output rules for new applications to allow or block like in this capture below, I will leave it in the spoiler to make it clearer and easier for you to adjust in your WFC. [SPOILER="Outbound (recommended)"] [ATTACH type="full" alt="1680062608967.png"]273963[/ATTACH] [/SPOILER] In Secure Boot, the WFC automatically sets the High Filtering profile at system shutdown and at Windows Startup, network connections will be blocked until you change the profile to Medium or Low Filtering. Remember that this is done manually by you, and the icon is black when High Filtering is enabled, this means that everything is blocked and you have no internet access, so I suggest you leave Secure Boot unchecked. [SPOILER] [ATTACH type="full" alt="1680065630065.png"]273966[/ATTACH] [ATTACH type="full" alt="1680065568483.png"]273965[/ATTACH] [/SPOILER] Yes, correct it protects the windows firewall from external tampering. When this feature is enabled, importing firewall rules when changing the filtering mode can only be done through the WFC. Note: Not always what it says is true, I have seen many times this Safe Profile box unchecked, even I check it afterwards, so the safe rules have important role over Safe Profile, or maybe some bug in WFC and I don't know and so the box unchecks itself. Yes, and no at the same time, you can block yes but not automatically, unless you block it, it will notify anything that is going to access the internet, because you are in control, and you have to be careful it will ask everything that is going to connect to the internet, Windows services like svchost, other Windows services. I recommend first that you backup your Windows firewall settings and export all rule configuration directives created by the Windows firewall before enabling Secure Rules in the WFC. Yes, that's why you have to backup all Windows firewall rules before you inhabit it Secure Rules see the screenshot in the spoiler the WFC notification it gives me when enabling Secure Rules. [SPOILER="Warning: Do not activate if you do not know how to use it."] [ATTACH type="full" alt="1680066597180.png"]273967[/ATTACH] [/SPOILER] Yes, they are easy to identify because there is an FS prefix in front of the service or file name when you access the web, so it is simple. They always have an FS before the name e.g. fsmainui.exe and fsturnon.exe are legitimate F-secure processes. Yes, the connections are secure, not signed, if I didn't misunderstand what you said. No the WFC does not show if the application is signed. But it is signed because I checked the F-secure files, all are signed, starting with the installer, if they were not signed I would not be using F-secure. Who signed it? I can not pass this information because I can compromise the security of the users that use F-secure and this post is public, I pass this information only by PM, but rest assured that F-secure is a well respected Finnish company that exists since 1988. All of them have a name with initials FS before the process name as I mentioned above as an example the fsmainui.exe. You are very curious even hein [USER=99949]@a090[/USER], difficult to know and identify processes that you say obscure, I do not think the F-secure would do this, it can only collect telemetry to improve their products, they take the privacy of users seriously, the F-secure is a company in the security industry veteran, at least to date I have not seen any scandals them from them, then I ask that use quietly that is a reputable and reliable company.(y) You're welcome, Whenever you need us, we are always here in MT to share and solve the doubts of the members here in the forum.;) [/QUOTE]
Insert quotes…
Verification
Post reply
Top
