| -
 - Programs
- Programs List
- The Programs list contains all applications registered and controlled by Windows7FirewallControl. The list displays the registered application names and network permissions set to the applications.
- All the operations with the listed programs are performed via the toolbar, right-clicking the list or hotkeys (see the menu for the hotkey assistance). The applications can be inserted, deleted and/or edited anytime at your option.
- The Filter field allows displaying a subset of the applications by name. If typed letter set matches an application name the application is displayed.
- Edit Application Access
-
 If an unlisted application requires network access or a listed application network permissions is edited, the Edit Application dialog is displayed and allows setting/changing the application network permissions, the security zone for the application. Choosing "EnableALL" allows the application access in the both directions (incoming and outgoing) unrestrictedly; DisableAll prohibits the network access; IncomingOnly/OutgoingOnly allows access only in the specified direction etc. Plus version includes huge set of predefined security zones. - The common approach of network protection supposes minimal application network access allowed. So unknown/unrequired applications network access attempts are to be blocked. User level network active applications (not system services/servers) require outgoing access allowed only usually, therefore the best permission for them is OutgoingOnly, for instance. Plus version advises the most suitable zone on the initial application network access attempt automatically.
- "Allow in Mode: Expensive/Insecure Connection" marks the application to follow the zone set in "Mode: Expensive/Insecure Connection" (available via TrayIcon/RightClick menu) as well. All the other unmarked applications will not be allowed to access the network when the mode is set.
Note: Some applications may require the network access in both directions always (FTP clients, instant messengers etc)
- Extra information (Plus version only)
- Program list additional columns:
- Run - shows whether application is running currently
- Ext - indicates application is configured for external/worldwide access via Port Forwarding
- Lim - indicates application is marked for "Mode:Expensive/Insecure Connection"
The columns information is not updated immediately. 5-10 seconds delay should be expected for the column data actualization to save the computer resources. - "Show Advised/Recommended Zones Only" option state is not saved within the Edit Application dialog simplifying your choice in the short list of Advised/Recommended zones only.
- "Check AV hook" allows checking for whether the applications running on the PC are hooked by an antivirus (AV) online monitoring. AVs hook the traffic for the processing "inside" the PC while monitoring on-the-fly and locally. The real traffic is redirected to localhost (127.0.0.1) implicitly. The traffic is processed by the AV locally and then the traffic is issued to the internet in the name of the AV related service. So, applications request connection to localhost instead of a real public internet address from the firewall point. The real address is used only by AV service to operate with the real destination. Localhost is enabled by many predefined zones as the localhost communication is vital for many applications and safe almost anytime. Applications permitted to communicate with localhost and not permitted worldwide actually are able to connect to any address as the result of the hook. If the traffic is hooked by AV the permissions have to be set accordingly or the AV online monitoring has to be switched off.
|
