Hello @RockmanIT ! We need also to select the Local IP addresses for the Computers that we need to block ! For the Local IP add the ranges or the IPs of these Computers so only these ae affceted by the rule Tell me how it went!
How do I block Chrome, Edge and Firefox from accessing all websites with Windows firewall except a chosen 2 or 3 websites??
We have a large group of computers in our domain that use to use SEP CLoud firewall to only allow Chrome, Edge and Firefox to access a choice few bunch of websites while blocking all others. Our new Cloud endpoint service doesnt supply us with a firewall option anymore. Does anyone know how I can setup Windows firewall to only allow a select group of computers to access only a couple of Websites with Chrome, Edge and firefox while blocking all other Websites.?
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Client for IT Pros | User experience | Other
3 additional answers
Sort by: Most helpful
-
Konstantinos Passadis 19,586 Reputation points MVP
2023-04-17T19:01:04.35+00:00 Hello @RockmanIT ! In case these Web Sites are Internet based you have to work with nslookup , or other tools to resolve the Ip ranges cause WIndows Firewall does not offer DNS filtering . In general here are the steps: To create outbound firewall rules that allow access only to specific websites with Chrome, Edge, and Firefox while blocking all other websites, you can follow these steps:
-
Open Windows Firewall with Advanced Security.
-
Click on "Outbound Rules" on the left-hand side of the window.
-
Click on "New Rule" on the right-hand side of the window.
-
In the New Outbound Rule Wizard, select "Program" as the rule type and click Next.
-
Select "This program path" and browse to the location of the web browsers (e.g. C:\Program Files (x86)\Google\Chrome\Application\chrome.exe). Click Next.
-
Select "These IP addresses" as the scope for the rule.
-
Click "Add..." under "Remote IP address".
-
In the "This IP address or subnet" field, specify the IP addresses or subnets for the websites you want to allow access to. Click OK.
-
Click Next and select "Allow the connection".
-
Name the rule and click Finish.
-
Create a final outbound rule that blocks all outgoing traffic to any IP address or subnet not specified in the previous rules. BUT ! If you are using an Enterprise Solution like Windows Defender from Microsoft 365 then you have this option! Take a look here to activate https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/web-content-filtering?view=o365-worldwide If you need more details , do not hesitate to ask ! We are here to help ! In case this answer helped you solve your problem kindly mark it as Accepted ! BRRepeat steps 3-10 for each web browser you want to restrict (e.g. Microsoft Edge, Mozilla Firefox).
-
-
RockmanIT 256 Reputation points
2023-04-17T19:47:43.43+00:00 I created an outbound rule to enable all connection with MS Edge during which I did an nslookup and copied the IPV6 and IPV4 IP's into the field named "Allow Remote IP" for the only site that I want users to be allowed to access and then saved the rule. I then created another outbound rule to block MS Edge from accessing all websites but now when I launch MS edge and browse around all Websites seems to be blocked and I cannot access the one that i allowed. Any ideas?
-
RockmanIT 256 Reputation points
2023-05-19T13:52:51.5866667+00:00 This helped thank you