I'm building a whitelist-only Windows firewall setup.
I have Windows 10 on VMWare Workstation Pro 17, to experiment.
I've disabled all:
netsh advfirewall set allprofiles firewallpolicy blockinbound,blockoutbound
netsh advfirewall firewall set rule all new enable=no
And enabled some:
netsh advfirewall firewall set rule name="File and Printer Sharing (Echo Request - ICMPv4-In)" new enable=yes
netsh advfirewall firewall set rule name="Remote Desktop - User Mode (TCP-In)" new enable=yes
netsh advfirewall firewall set rule name="Core Networking - DNS (UDP-Out)" new enable=yes
netsh advfirewall firewall set rule name="Core Networking - Dynamic Host Configuration Protocol (DHCP-Out)" new enable=yes
netsh advfirewall firewall set rule name="File and Printer Sharing (SMB-Out)" new enable=yes
I can't get DNS to work. With a standard firewall, I can ping my host by name or IP. When I restrict the firewall, I can only use IP.
One would think that it was just a matter of enabling one of the existing rules. It's easy to and enable all existing rules. This won't make a difference though. (And there's a lot of DNS, SMB, NB etc. sounding rules.)
Do anyone know what should I enable or add in the firewall, if I want to ping my Windows host like so:
ping my-VMware-host