In Windows2008 and IIS7.0 application environments, the built-in system firewall is no longer just a substitute. The IIS server can be used independently as a Web server or together with compatible tools, it can be used to establish Internet business, access and operate data from different data sources, and create Web applications.
It has become a real helper for improving the security of IIS7.0 servers. In practice, in addition to the firewall, Our administrator will also use other security measures to integrate with these products to build a three-dimensional defense system. For example, firewall policies are mainly used at the application layer.
When implementing the IPSec Security Policy in IIS7.0, you can also improve the security of IIS7.0 application services from the transport layer.
That is to say, the newly added custom rules based on scope, configuration file, IPSec status, and other factors can further improve Server OS integration security.
In the near future, the IIS7.0 Application Service Based on the Microsoft operating system can meet the security requirements of enterprise users to a great extent without the need for third-party security products.
In the past, Microsoft did not do well in this regard. However, after 2008 and IIS7.0, great progress has been made in security, truly realizing a security defense system with both security and performance considerations and both attacking and defending. In this security system, Windows Firewall is indispensable.