This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 93%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
We have a large group of computers in our domain that use to use SEP CLoud firewall to only allow Chrome, Edge and Firefox to access a choice few bunch of websites while blocking all others. Our new Cloud endpoint service doesnt supply us with a firewall option anymore. Does anyone know how I can setup Windows firewall to only allow a select group of computers to access only a couple of Websites with Chrome, Edge and firefox while blocking all other Websites.?
Hello @RockmanIT ! We need also to select the Local IP addresses for the Computers that we need to block ! For the Local IP add the ranges or the IPs of these Computers so only these ae affceted by the rule Tell me how it went!
So lets recap what I did based on your extra advice. I created an outbound rule Called "MS Edge Allow" to enable access to all websites with MS Edge. I then did an nslookup and copied the IPV6 and IPV4 IP's into the field named "Allow Remote IP" which is the only site that I want users to be allowed to access. In addition I added the IP address range of the computers that I only want to have access to that one website into the Local IP field. I then saved the rule. I then created another outbound rule to block MS Edge from accessing all websites called "MS Edge Block". The blocked rule works with blocking all internet traffic however the allow rule is still not allowing the chosen machine to access the only site that I want the machines to access. Can this actually be done with Windows firewall?
Hello @RockmanIT !
I am sorry taking too long to respond!
Have you been able to resolve the issue ?
I would gladly assist in additon towhat you have managed to achieve so far !
Regards
Hello @RockmanIT ! In case these Web Sites are Internet based you have to work with nslookup , or other tools to resolve the Ip ranges cause WIndows Firewall does not offer DNS filtering . In general here are the steps: To create outbound firewall rules that allow access only to specific websites with Chrome, Edge, and Firefox while blocking all other websites, you can follow these steps:
Open Windows Firewall with Advanced Security.
Click on "Outbound Rules" on the left-hand side of the window.
Click on "New Rule" on the right-hand side of the window.
In the New Outbound Rule Wizard, select "Program" as the rule type and click Next.
Select "This program path" and browse to the location of the web browsers (e.g. C:\Program Files (x86)\Google\Chrome\Application\chrome.exe). Click Next.
Select "These IP addresses" as the scope for the rule.
Click "Add..." under "Remote IP address".
In the "This IP address or subnet" field, specify the IP addresses or subnets for the websites you want to allow access to. Click OK.
Click Next and select "Allow the connection".
Name the rule and click Finish.
Repeat steps 3-10 for each web browser you want to restrict (e.g. Microsoft Edge, Mozilla Firefox).
I created an outbound allow connection rule just for MS Edge based on your instructions above. During which I did an nslookup for the only site that I want to be allowed with MS Edge and added that info to the filed that says "These IP's" under "Remote Connections" and saved the rule. I then created an outbound block all connections rule for MS Edge not adding any iP's or subnets into the IP scopes. All websites are blocked with Edge however the site I want to reach is also blocked. What am I doing wrong?
I created an outbound rule to enable all connection with MS Edge during which I did an nslookup and copied the IPV6 and IPV4 IP's into the field named "Allow Remote IP" for the only site that I want users to be allowed to access and then saved the rule. I then created another outbound rule to block MS Edge from accessing all websites but now when I launch MS edge and browse around all Websites seems to be blocked and I cannot access the one that i allowed. Any ideas?
This helped thank you