How to block unknown high ports in F-Secure 14.X
How do I block:
High port output connections
Incoming SMB and Windows Network Connections from 0.0.0.0/0
In this version Firewall does not obey the priority order as version 13X.
In version 13X I have a rule that releases ports from my internal services and branch IPs.
And another rule below that I deny anything other than that.
I ask this because I found an application running on the user's computer that uses TCP out port 32234, in F-Secure 13X it blocks these ports correctly, because the firewall has to block unknown ports
In version 14X, the application is able to connect to an internet host, but should block because it has not been expressly released.
Replacing the F-Secure firewall in Windows, in my opinion, was a very big comeback.
And as far as I could tell, F-Secure 14X Firewalll generates no alerts.