首先要容许程序访问网络
然后制定相应的规则,容许用哪个端口访问。
你可以参考一下下面的:
ALLOW DNS
UDP, Rem Port DNS, Allow
MSN CONNECT
TCP, Outbound, Rem Port 1863, Allow
MSN VOICE
TCP, Outbound, local port 6901, Allow
MSN VOICE
UDP, Rem Port 6901,7001, Allow
FILE TRANSFER
TCP, Outbound, Rem Port FTP,6891-6900, Allow
REMOTE ASSIST
TCP, Outbound, Rem Port RDP, Block
APP SHARE/WHITEBOARD
TCP, Outbound, Rem Port 1503, Allow
RTP
UDP, Local Port 5004-65535, Allow
ALLOW HTTP
TCP, Outbound, Rem Host 69.*.*.*, 64.*.*.*,66.*.*.*,207.46.*.*, Allow
BLOCK HTTP
TCP, Outbound, Rem Host (Your ISP's DNS server), and where rem port is HTTP, Block
LOGIN
TCP, Outbound, Rem Host loginnet.passport.com, and where Rem Port is HTTPS, Allow
VOICE
UDP, Rem Host 64.4.12.200, Rem Port 7001, Block
ALLOW UPDATE
TCP, Outbound, Rem Host www.download.windowsupdate.com, and where Remote Port is 80-83, Allow
HTTPS
TCP, Outbound, Rem Port HTTPS, Allow
SOCKS
TCP, Outbound, Rem Port SOCKS, Allow
PROXY
TCP, Outbound, Rem Port PROXY3128,PROXY8080,PROXY8088, Allow
BLOCK UDP
UDP, Block
BLOCK TCP IN
TCP, Inbound, Block
BLOCK TCP OUT
TCP, Outbound, Block