To me the most kerio 2.1.5 reminding Windows firewall controller is TinyWall. It has no zones and all is based on the firewall rules. I must admit I don't know how safe the rules admitting something to home network are. I don't have one. Just a single computer connected to internet.
The GUI have options like password protection that are not working, because it makes TW loose the GUI (the controlling graphic user interface). And some other GUI options are dangerous that could make bring the service down. I am speaking about things like updating Adobe Flash:
TinyWall has a window to see blocked connections. If I try unblock Flash update from that window, it brakes TW. I think the service that controls Wi9ndows firewall gets broken and allows everything out. Same if I try unblock Flash update as a process. The only stable option I know is putting the firewall to 'Allow all outgoing' mode. The GUI is unstable when allowing connections from it!
But when some of you are behind a router, it is a good one once you have made all your rules. that you can save as a ruleset file. Blocks all unknowing both inbound and outbound. And I have not seen it braking otherwise. It is a tinkerers firewall control.
TW system rules coming from install are these:
»
www.saunalahti.fi/~jarmo ··· ules.jpgI have disabled Network Detection Discovery rules that are not needed for my cable modem or my Huawei USB stick mobile connections from those.
I just wish Karoly Pados before he dissapeared would have made an option to allow only some specific connections to remote IPs. For situations like this: I noticed from connection window that svchost.exe was blocked to my ISP DNS servers after I had shut down the cable modem and turned it on. PC reboot would have worked, but with a rule made that would not have been needed and safer. You can make rules for svchost.exe restricted to say dnscache service, but not not to the needed remote IPs.
Once the cable modem is on and the DNS things got, I can safely shutdown my computer with TW blocking everything and the connection seems good after I turn TW to normal protection when I am back to my account knowing everything has been blocked. Rebooting the computer after some possibly dangerous network activity I want to avoid. Always the shutdown instead.