On technet, I saw the ISA Server 2004 benchmark series courses, however, because my OS is not of the server version (the poor 40 Gb space has been used almost, and there is no space to install winserver2003), you cannot install ISA Server, I heard that Kerio WinRoute Firewall has similar functions (mainly firewall and VPN functions), so I can't wait to get the latest crack version of kwf (when I wrote this article, the latest version is 6.2.0.1323 ).
at the beginning, kwf was uncomfortable because its communication policy was based on ports and services, compared with the firewall that comes with WINXP SP2, the setting and prompt of Internet access rules for the application Program is less, and it doesn't feel as easy to use as it comes with the system. For this reason, I couldn't connect to QQ at first (but it was also the reason that I knew that QQ had 6 network connection attempts ).
after figuring out the relationship between the firewall host and the local connection (It took me some time), I knew how to set the port, in kwf, we should regard "Local Connection" as the Internet (remote end) and firewall host as the local end. Now it seems so simple, I don't know why: the local host is separated from the firewall. Since the relationship between firewall host and local connection is clear, the connection problem of QQ is solved, because its UDP login method is to access port 8000 of the remote server through the local (firewall host, add Rules as follows:
QQ connection is just an example. Other connection rules are set in this simple way, so you don't need to explain it again.
As I mentioned earlier, kwf's "no built-in system is easy to use" is actually incorrect. The built-in firewall is easy to set, and its relative functions are weak. Kwf also has powerful network sharing and VPN functions, and integrates with the McAfee Anti-Virus engine.
then I used the Kerio VPN Client to test the VPN function of kwf on the Virtual Machine (VPC). By adding the VPN clien Ping rule, I found that: the Win2000 on the virtual machine can successfully ping the host machine or the Kerio vpn ip address in the VPN Server or firewall host, which has already formed a LAN.
no more nonsense. You need to understand more functions of kwf. By the way, this article involves a port connection viewing tool TCP view, which is very useful.