Jump to content

Adding or /Enable/Disable a rule by command line

Helge Lange
 Share Followers 2

Recommended Posts

Helge Lange

Helge Lange 0

Posted
Posted

My son loves Fortnite a bit too much and now with school at home where he needs access to his computer he plays while in class. Atm. I placed a firewall rule and Fortnite can't connect. But I don't want to go all the time to his PC and enable/disable the rule. So I wrote a small windows service (that also can control when he can login, how long he can use the PC and stuff) and want to add now, that I remotely (from my cellphone for ex.) I can give him permission to play Fortnite a certain amount of time. So the rule should deactivated by command line from my service and after that time activated again.

With the windows firewall I can achieve that with the "netsh advfirewall firewall" commands, but in ESET ?

Any ideas ? it it possible or do I have to uninstall ESET and use the windows firewall?
I tried it locally an my dev-pc and adding the rule in windows firewall work, but ESET does ignore it. The test program still connects on TCP and UDP

 

thanks in adv.

Link to post
Share on other sites
  • Administrators
Marcos

Marcos 3,596

Posted
  • Administrators
Posted

Consumer ESET products cannot be controlled from the command line, only business products can (solution for RMM systems).

Currently we don't provide application control on Windows which would enable you to define times when an application can be launched or when it can access the Internet. This is currently possible on Android only.

Link to post
Share on other sites
  • Administrators
Marcos

Marcos 3,596

Posted
  • Administrators
Posted

I don't think it's unique to ESET that protection cannot be disabled easily from the command line. Otherwise malware or attackers could eaisily disable protection or add fw rules prior to performing malicious actions.

Link to post
Share on other sites
  • Most Valued Members
peteyt

peteyt 170

Posted
  • Most Valued Members
Posted
13 minutes ago, Helge Lange said:

you'd still need admin rights. also with windows firewall.

Maybe I have to think about it another way, like prohibiting the exe file to start.

There also might be a free parental control program that could achieve what you wanted 

Link to post
Share on other sites
itman

itman 937

Posted
Posted

Adding and deleting Win firewall rules "on the fly" is not the way to accomplish this.

Use of netsh advfirewall firewall via remote execution method should be restricted. If you can do it, so can an attacker.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Followers 2
Go to topic listing

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...