I have downloaded the trial version of Little Snitch.
After install, when I am prompted with connection requests, I have the option to allow or deny the connection via "Any Connection" or "Only" a specific connection.
If I select "Only Forever", I am assuming that the rule will prevent the application from connecting to another address/port.
But if the application wants to connect to another address/port – will I be prompted to set a new rule for that specific address/port – or will the first rule actually block out all future Little Snitch request prompts?
In regards to the above question, does the behavior differ between Allow and Deny? E.g.:
- If I Allow ONLY a certain address AND port – will it disable prompts for all future variants of address and/or port?
- If I Deny ONLY a certain address AND port – will it disable prompts for all future variants of address and/or port?
I am assuming that (2) above will just deny that specific combination – but what about restricting allowance as in (1)?
Best Answer
If you click Deny on the picture you posted, then no further notifications will be shown [& the connection will be denied] for gamed trying to connect to (static.gc.apple.com AND port 443), not for (static.gc.apple.com OR port 443).
Any & all other connection attempts will be flagged - e.g. a connection to static.gc.apple.com on port 442 would be flagged, or a connection to notstatic.gc.apple.com on post 443 would be flagged.
The next time gamed was launched, your previous deny would again be flagged for your attention, as you only denied it until Quit.
Note:
If you click on the static.gc.apple.com in the line above, you can broaden the domain you wish to block - though it must be said that blocking Apple devices & services [gamed is an Apple service] from connecting to Apple is not really going to be a good move, long-term.
In general terms, Little Snitch can be used to block any or all connections for any app or service - as either a precision tool or a sledgehammer!
It should be used with care.