Step into the Win7 era, the general user, really no need to find the wall, the system wall is enough (if you are an extranet user, there is no doubt enough!) If you are a local area network user, add an ARP firewall, suffice it)
Some people say, the system wall anti-external good, anti-inside is not, in fact, misunderstanding. As long as you are willing to move a hands-on, modified, the system wall becomes a strong wall-white list wall: There are no rules clearly defined can be inbound, outbound, all stop!
The modification is simple, open Group Policy and change to the following policy:
Specific settings:
Note: In general, it is recommended not to make changes to inbound connections, to maintain the default "Not configured" so that the pop-up window to ask a good choice of release peer software.
Set the above strategy, you will find that most of the programs are not on the net-to allow a program to surf the Internet, to the Control Panel firewall advanced settings of the outbound rules to add Rules: The program path, the protocol used, the port accessed, and the IP address, all can be defined
Define yourself as a whitelist for outbound access to the Internet:
About Windows System firewalls