How do I block Chrome, Edge and Firefox from accessing all websites with Windows firewall except a chosen 2 or 3 websites??

RockmanIT 256 Reputation points
2023-04-17T18:45:52.6466667+00:00

We have a large group of computers in our domain that use to use SEP CLoud firewall to only allow Chrome, Edge and Firefox to access a choice few bunch of websites while blocking all others. Our new Cloud endpoint service doesnt supply us with a firewall option anymore. Does anyone know how I can setup Windows firewall to only allow a select group of computers to access only a couple of Websites with Chrome, Edge and firefox while blocking all other Websites.?

Windows for business | Windows Server | User experience | Other
Windows for business | Windows Client for IT Pros | User experience | Other
{count} votes

Accepted answer
  1. Konstantinos Passadis 19,586 Reputation points MVP
    2023-04-18T07:40:51.15+00:00

    Hello @RockmanIT ! We need also to select the Local IP addresses for the Computers that we need to block ! For the Local IP add the ranges or the IPs of these Computers so only these ae affceted by the rule Tell me how it went!

    1 person found this answer helpful.

3 additional answers

Sort by: Most helpful
  1. Konstantinos Passadis 19,586 Reputation points MVP
    2023-04-17T19:01:04.35+00:00

    Hello @RockmanIT ! In case these Web Sites are Internet based you have to work with nslookup , or other tools to resolve the Ip ranges cause WIndows Firewall does not offer DNS filtering . In general here are the steps: To create outbound firewall rules that allow access only to specific websites with Chrome, Edge, and Firefox while blocking all other websites, you can follow these steps:

    • Open Windows Firewall with Advanced Security.
      
    • Click on "Outbound Rules" on the left-hand side of the window.
      
    • Click on "New Rule" on the right-hand side of the window.
      
    • In the New Outbound Rule Wizard, select "Program" as the rule type and click Next.
      
    • Select "This program path" and browse to the location of the web browsers (e.g. C:\Program Files (x86)\Google\Chrome\Application\chrome.exe). Click Next.
      
    • Select "These IP addresses" as the scope for the rule.
      
    • Click "Add..." under "Remote IP address".
      
    • In the "This IP address or subnet" field, specify the IP addresses or subnets for the websites you want to allow access to. Click OK.
      
    • Click Next and select "Allow the connection".
      
    • Name the rule and click Finish.
      
    • Repeat steps 3-10 for each web browser you want to restrict (e.g. Microsoft Edge, Mozilla Firefox).
      
      Create a final outbound rule that blocks all outgoing traffic to any IP address or subnet not specified in the previous rules. BUT ! If you are using an Enterprise Solution like Windows Defender from Microsoft 365 then you have this option! Take a look here to activate https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/web-content-filtering?view=o365-worldwide If you need more details , do not hesitate to ask ! We are here to help ! In case this answer helped you solve your problem kindly mark it as Accepted ! BR

  2. RockmanIT 256 Reputation points
    2023-04-17T19:47:43.43+00:00

    I created an outbound rule to enable all connection with MS Edge during which I did an nslookup and copied the IPV6 and IPV4 IP's into the field named "Allow Remote IP" for the only site that I want users to be allowed to access and then saved the rule. I then created another outbound rule to block MS Edge from accessing all websites but now when I launch MS edge and browse around all Websites seems to be blocked and I cannot access the one that i allowed. Any ideas?

    0 comments No comments

  3. RockmanIT 256 Reputation points
    2023-05-19T13:52:51.5866667+00:00

    This helped thank you

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.