Question Simplewall

Please provide comments and solutions that are helpful to the author of this topic.

n8chavez

n8chavez

Level 19
Thread author
Well-known
Feb 26, 2021
949
Is there any way to have a hierarchy with simplewall? It would be nice to have a rule where an app can only communicate through a certain address, a sock5 proxy address, while also having every other connection blocked. But I cannot see a way to do that; if I create a block rule it takes priority over the allow rule(s) and doesn't allow any connection at all. I know it's not a limitation of wfp, because Sphinx's firewall WFC can do this.
 
  • Like
Reactions: Ednis27, Jack and Dave Russo
F

ForgottenSeer 94654

n8chavez said:
Is there any way to have a hierarchy with simplewall? It would be nice to have a rule where an app can only communicate through a certain address, a sock5 proxy address, while also having every other connection blocked. But I cannot see a way to do that; if I create a block rule it takes priority over the allow rule(s) and doesn't allow any connection at all. I know it's not a limitation of wfp, because Sphinx's firewall WFC can do this.
Click to expand...
Ask henrypp Issues · henrypp/simplewall
 
  • Like
Reactions: Jack, Dave Russo and n8chavez
n8chavez

n8chavez

Level 19
Thread author
Well-known
Feb 26, 2021
949
I asked of the github page, but they weren't very helpful. I was essentially told that there was no need for a block rule because Simplewall block by default unless told not to. But my original question still stands.

I have my browser set to only communicate through a sock5 proxy; 10.64.0.1:1080. If I create a rule for it to communicate using a remote allow rule 10.64.0.1:1080 it works just fine. However that rule is not exclusionary; meaning that other addresses and ports are not blocked like I want them to be. How can I make it so that everything will be blocked except the addresses/ports I allow?

The Windows Firewall can do this just fine.
 
  • Like
Reactions: Ednis27, Jack, Dave Russo and 1 other person
n8chavez

n8chavez

Level 19
Thread author
Well-known
Feb 26, 2021
949
Zero Knowledge said:
Why not use WFC? Much better software, better designed and good usability. Better support than Simplewall by the WFC developer over @ WIlder's.
Click to expand...

I like WFC. But I haven't used any of the updated version because of the hideous malwarebytes branding it uses now. Simplewall is minimalist and sleek and is still being actively developed. WFC hasn't really added anything new recently.
 
  • Like
Reactions: Dave Russo and oldschool
oldschool

oldschool

Level 85
Verified
Top Poster
Well-known
Mar 29, 2018
7,611
n8chavez said:
I like WFC. But I haven't used any of the updated version because of the hideous malwarebytes branding it uses now. Simplewall is minimalist and sleek and is still being actively developed. WFC hasn't really added anything new recently.
Click to expand...
But henrypp hasn't been on Wilders in ages, AFAIK. Alexandru is, and WFC is stable.
 
  • Like
Reactions: Dave Russo
n8chavez

n8chavez

Level 19
Thread author
Well-known
Feb 26, 2021
949
oldschool said:
But henrypp hasn't been on Wilders in ages, AFAIK. Alexandru is, and WFC is stable.
Click to expand...

But the GUI sucks since WFC was sold. Why does it matter if Alexander is active if I'm not using WFC? If the gui goes back then I'll update. But the gui sucks right now.
 
  • Like
Reactions: Dave Russo
Z

Zero Knowledge

Level 20
Verified
Top Poster
Content Creator
Dec 2, 2016
849
n8chavez said:
I like WFC. But I haven't used any of the updated version because of the hideous malwarebytes branding it uses now. Simplewall is minimalist and sleek and is still being actively developed. WFC hasn't really added anything new recently.
Click to expand...
Yeah, but it's a simple allow/deny firewall, it doesn't need a lot of updates. It just works. GUI isn't a big issue, you don't stare at it all day, just set and forget.
 
  • Like
Reactions: Dave Russo
n8chavez

n8chavez

Level 19
Thread author
Well-known
Feb 26, 2021
949
Zero Knowledge said:
Yeah, but it's a simple allow/deny firewall, it doesn't need a lot of updates. It just works. GUI isn't a big issue, you don't stare at it all day, just set and forget.
Click to expand...

Yeah. I guess part of the reason I won't use the new gui is because I paid for WFC before it was sold, but it was sold anyway.
 
  • Like
Reactions: Dave Russo
Z

Zero Knowledge

Level 20
Verified
Top Poster
Content Creator
Dec 2, 2016
849
n8chavez said:
Yeah. I guess part of the reason I won't use the new gui is because I paid for WFC before it was sold, but it was sold anyway.
Click to expand...
Me too, but it was only $10 and at the time it was the only way to unlock outbound notifications if memory serves me correctly.

Not a big deal, I hardly think he got rich selling WFC for $10. Yeah Malwarebytes.... I know, I know. But he has released it for free with all features.
 
  • Like
Reactions: n8chavez, Dave Russo and oldschool
M

Marinsa

New Member
Mar 14, 2023
1
oldschool said:
@n8chavez I think there aren't many MT members using Simplewall who could answer your question. IDK. run 3
Click to expand...
It functions normally if I configure a remote allow rule for 10.64.0.1:1080. However the rule isn't exhaustive; it doesn't prevent traffic from other IP addresses and ports, which is what I'd prefer. What steps do I take to ensure that just the IP addresses and ports that I provide will be accessible?
 
F

ForgottenSeer 98186

Marinsa said:
It functions normally if I configure a remote allow rule for 10.64.0.1:1080. However the rule isn't exhaustive; it doesn't prevent traffic from other IP addresses and ports, which is what I'd prefer. What steps do I take to ensure that just the IP addresses and ports that I provide will be accessible?
Click to expand...
Ask the developer, henrypp:

t.me

Henry++

Author: @gtetjxghg
t.me t.me
 
n8chavez

n8chavez

Level 19
Thread author
Well-known
Feb 26, 2021
949
Marinsa said:
It functions normally if I configure a remote allow rule for 10.64.0.1:1080. However the rule isn't exhaustive; it doesn't prevent traffic from other IP addresses and ports, which is what I'd prefer. What steps do I take to ensure that just the IP addresses and ports that I provide will be accessible?
Click to expand...

Well that's just it, I don't think that situation can be done. That's what I asked about, and either it cannot be done or no one know how to do it correctly. I think your best bet now would be to use WIndows Firewall Control and create allow rules for whatever you want to access the socks5 address (in this case 10.64.0.1:1080 is the mullvad wireguard socks5 address), only giving it access to those remote address and remote port, then in WFC hide notifications from those exes. At least that's the conclusion I came to.
 
  • Like
Reactions: oldschool
sypqys

sypqys

Level 5
Apr 18, 2022
228
Hi ! I have launch simplewall on portable mode. But I want to uninstall all the rules and that Windows run without the simplewall rules ?
How I have to do for ?

Thanks
 
P

pxxb1

Level 10
Verified
Well-known
Jan 17, 2018
473
sypqys said:
Hi ! I have launch simplewall on portable mode. But I want to uninstall all the rules and that Windows run without the simplewall rules ?
How I have to do for ?

Thanks
Click to expand...

In the main gui, you have - Enable/Disable filters, click that. When it says Enable, it is Disabled.
 
  • Like
Reactions: oldschool

Similar threads

rashmi
Question Comodo Firewall and AnyDesk
Replies
6
Views
746
Comodo
Bot
Bot
Morro
    • Like
    • Wow
Question Should I do something with these rules in Simplewall?
Replies
1
Views
999
Other security for Windows, Mac, Linux
Morro
Morro
Ednis27
Advice Request For Microsoft To Do app to sync, I need svchost enabled on simplewall, is this safe?
Replies
2
Views
960
Other security for Windows, Mac, Linux
Ednis27
Ednis27

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top