![]() If I fully disable Windows Firewall, everything gets out and gets routed properly. If I go in and add a specific rule for the Private Profile to allow, nothing still gets out. ![]() If I set PUBLIC to Default BLOCK, the only thing that gets out (now routed over the VPN connection) are the things I've explicitly allowed. The problem is that connections still aren't getting out except for the rules I've allowed on the public profile. Local Area Connection, the physical connection to my untrusted networks, is a Public profile and the TAP adapter, Local Area Connection 2, gets thrown into the "Home" profile. In order to get the network to identify properly I do the following: route delete 0.0.0.0 (delete all default routes) netsh int ipv4 set address name="Local Area Connection 2" static 10.8.0.8 255.255.255.0 18.8.0.1 netsh int ipv4 set dns name="Local Area Connection 2" static 208.67.222.222 The preceding commands then have my networks identified properly. ![]() Here's my ruleset, a rundown: Public Profile: Outbound Default BLOCK Inbound Default BLOCK Allow HTTPS Allow DNS Allow ICMP Allow VPN Software out Private Profile: Outbound Default ALLOW Inbound Default ALLOW Windows Firewall identifies the TAP connection as a Public profile connection from the start, and doesn't allow me to change it. I've also tried setting the device adapter to TAP mode vs TUN mode (to make it appear more as a LAN connection than a routed connection). Hi Arthur, I've tried enabling and disabling each of the firewall rules for each connection.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |