Windows firewall blocked programs

I know Avast! allows all blocked programs in Comodo Firewall to access the Internet when web shield is active (tested it myself), I’ve also heard it does the same for Windows 7 firewall; is this true?

If so, is there any real security reason why the web shield can’t be disabled permanently? thx

Personally, under the Web Shield settings, I have “Scan traffic from well-known browser processes only” checked.

My thinking is that I allow well-known browser processes by default, so at least they get scanned. Everything else I allow is (hopefully) a trusted application, and everything else is blocked.

I am using Windows 7 firewall with Windows Firewall Notifier, and it is true the same with Comodo.

It isn’t avast allowing blocked programs, but comodo not able to differentiate that program going through (being filtered into) the avast localhost proxy (avastSvc.exe).

There is another couple of topics about this and by all accounts it is comodo not using the latest filter driver (used in win7) but still using the old driver, which is almost exclusively banned in win7.

I can’t recall the topic offhand, you could try a forum search.

I think DavidR is referring to this post here:

http://forum.avast.com/index.php?topic=93953.90

Whatever, by all accounts I can find, and by my own experience, the Windows 7 Firewall will NOT block applications with Web Shield activated. I have all the latest MS updates that I am aware of.

Yes, that’s the topic I was thinking about.

I don’t know about the windows 7 firewall (I don’t use it), unless the user has set the win7 firewall to monitor outbound traffic and also sets the rules governing connections.

I know there are some that are using Windows Firewall Control, a more user friendly interface, I don’t know if they are also having this issue with blocked applications being able to tunnel through the avast localhost proxy unmolested by the windows firewall.

So the “Scan traffic from well-known browser processes only” enabled (that you mentioned) shouldn’t redirect their http connections/traffic through the proxy and hopefully the windows firewall would then block them.

Correct, that works. Ideally I’d like to scan all traffic I allow with WebShield if possible, but not sure I want to go to a third party FW. So for now I’m using what I think is a reasonable compromise.

Haven’t used Windows Firewall Control, but I’m using Win Firewall Notifier, which I think is an even lighter type of WFC, so I think they would work the same. I tried TinyWall, a similar app, and it does work the same.