Network Monitor - Block everything, except

[A-Ferreira]

There's no reason to allow any network traffic that is not DNS, DHCP and web-browsig on 80,443.

However, some windows services use 443, but I want all applications blocked, except the browser.

I tried Disable the web-browsing rule and add an application rule (to the browser) to allow outbound traffic, however, this didn't work as it continued block (at the lower OSI level I believe).
What's the easiest way to achieve this whitelist (allow DNS, DHCP and browser (ex: firefox) on 80 and 443), block everything else (even if the OS blows up)
 

[Guilhermesene4096]

@A-Ferreira Welcome

 

Please provide your operating system version and the version of Kaspersky installed

 

Support links:

How to find your operating system version

How to find the name and version number of a Kaspersky application

[A-Ferreira]

Thanks for the welcome Guilhermesene,

Win 11 Pro, Kasp Standard

[Guilhermesene4096]

@A-Ferreira

Kaspersky version?

Spoiler

Edited January 27 by Guilhermesene4096

[A-Ferreira]

latest, fully updated

[Guilhermesene4096]

@A-Ferreira

The firewall settings that come by default in Kaspersky are recommended by Kaspersky experts for your security.

Even so, you can modify them according to your needs, but you may have some problems, especially in relation to the system's own applications, such as Windows Update, among others.

To block network access for all applications, do the following:

Spoiler

Block network access for all groups → Trusted - Untrusted - High restriction - Low restriction

This will block network access for all applications (including new applications that are installed).

Now, you only allow access to the internet through the browser you use.

Regarding the issue of releasing the firewall only for DNS, DHCP and the browser, this is already done by default (there is no need to release these ports, except for DHCP).

If you look, there are already DNS rules configured in the firewall.

Unless your computer will provide some IP address over the network, there is no need to release any ports over DHCP.

Edited January 27 by Guilhermesene4096

[A-Ferreira]

I've deleted all packet rules and created my own, but yes, used 3 templates as you noticed.

That was super helpful Guilhermesene!

You have a great day