Built-in windows firewall passes the connection with the unresolved IP


Warning: count(): Parameter must be an array or an object that implements Countable in /home/styllloz/public_html/qa-theme/donut-theme/qa-donut-layer.php on line 274
0 like 0 dislike
10 views
Good time of day!

The problem I faced with the following: Windows 7 Home premium with the included built-in firewall. Firewall operates in the mode block inbound\\outbound allow.
There is VirtualBox which propolene some ports from the host machine. In the firewall created a rule for VirtualBox, which allows inbound traffic on any Protocol and port for this application. The only limitation are the Ip addresses that are hardcoded in Scope/remote IP adresses. I have written 4 IP addresses(let's call them 1,2,3 and 4, respectively). Trying to get virtualBox on ports with IP, which is not in the list fail miserably(so everything works as it should). BUT! There is IP address 5, which is not in the list with which the man calmly bypasses this rule! I don't know if this is a bug, or some feature. But the fact remains that people with IP are not included in the list of allowed quietly bypasses the firewall. Can anyone explain what I encountered?

A little more to this:

My PC is behind a router, the router runs in NAT mode. People with IP=5 is also sitting behind a router and NAT. The only thing that unites us is one provider, resulting in IP address(outside the router), we have from the same pool.

Thanks in advance to all who wish to help!
by | 10 views

7 Answers

0 like 0 dislike
Can anyone explain what I encountered?
I think you need to contact Microsoft...
by
0 like 0 dislike
Listen to a sniffer, for example Wireshark-om all network interfaces in each situation — maybe something will turn up.
by
0 like 0 dislike
watched see passing packages and all. Don't know why :)
by
0 like 0 dislike
well, because Nathan actually
list the address of the internal interface in the prohibited and 5th will never get one... and all the other traff will cease to pass in principle ;)
and one more question — if you're behind a NAT, how do you connect to the outside? or spelled out in the router virtual server? if Yes, then the answer is in the game Nathan fields src dst
by
0 like 0 dislike
Yes, spelled out in the router virtual server. Could You explain about games with src and dst. And why does it not affect the other addresses?
by
0 like 0 dislike
In General, you should not in the problem description only used one digit for IPIC — is unclear. Would have invented sub-meshes though, so you can see what hipihi in any nets. First check the parameter "edge traversal" on the Advanced tab in the rule settings. If does not help — there are two ways to solve the problem.
The easiest in the car, spinning in VirtualBox, remove the default gateway and enter the static routes on the right 4 hipihi, but that will fall off the inet (if proxy not to start) :)
Second — ipfw for Windowsthat is guaranteed to close what is not needed. Rules can send email, if that.
by
0 like 0 dislike
You have made a block for INPUT traffic, but transit traffic passes through NAT, your blocking rules do not apply.
More than sure that the inside of VirtualBox block would work (maybe it is there to do on the router). Wind also flows through a packet without filtering.
\r
In General, little information, it is difficult to imagine the whole picture. I recommend you not to dwell on the fact that Windows is not working properly, but mistakes.
by

Related questions

0 like 0 dislike
2 answers
0 like 0 dislike
3 answers
0 like 0 dislike
4 answers
0 like 0 dislike
1 answer
asked Apr 13, 2019 by NaurizAitbai
0 like 0 dislike
2 answers
110,608 questions
257,186 answers
0 comments
26,190 users