Windows XP system SP2 Fire Wall Overview _ Web Surfing

Windows Firewall is an updated version of the original Internet Connection Firewall that was replaced in Windows XP Service Pack 2. The firewall is open on all network card interfaces by default. This option can provide more protection for network connections by default, whether it is a new Windows XP installation or an upgrade installation. However, if some applications do not work in this firewall filtering state, they will not be compatible with this new operating system.

Update

User interface and new features

To configure Windows Firewall, you can open from a secure heart, the Security Center is located in Control Panel, you can also open the Windows Firewall console directly from Control Panel, and the 3rd option is to access the firewall console from the Advanced tab of the network connection. There are 3 options on the Main tab:

Enable (recommended)

No exceptions allowed

Off (not recommended)

When you choose not to allow exceptions, Windows firewall blocks all network requests that connect your computer, including applications and system services that are listed in the Exceptions tab. In addition, firewalls will intercept file and printer sharing, as well as network device detection. Windows Firewall, which does not allow exception options, is used to connect personal computers on public networks, such as those used in hotels and airports. Even if you use Windows Firewall that does not allow an exception option, you can still browse the Web, send an e-mail message, or use even the communication software.

The Exceptions tab allows programs and ports to add blocking rule exceptions to allow specific inbound traffic. For each exception, you can set a scope accordingly. For home and small Office application networks, it is recommended that the scope be set as a possible local network. Of course, you can also manually set the range of IP in the scope. In this way, only network requests from a specific range of IP addresses can be accepted.

There is also a button in the Exceptions tab that adds a program. If you want other clients in your network to be able to access a particular program or service of your locality, and you don't know which port and type of port the program or service will use, you can add the program or service to Windows The exception to the firewall to ensure that it can be accessed externally.

The following settings can be configured on the Advanced tab:

Connection-specific rules applied to each network interface

Security record Configuration

Global ICMP rules, which allow computers on the network to share and pass error and status information through the Internet Control Message Protocol (ICMP).

Default settings, you can restore all Windows Firewall settings to their default state

We can configure different rules for different network connections. A combination of the settings in the Exception option and the additional settings for the network connection in the Advanced option is called the Windows Firewall synthesis setting (Resultant Set).

Group Policy configuration

By using Windows Firewall, an administrator can make it necessary to protect a public connection to a small network or a separate computer connected to the Internet. They provide security for the network by deploying the appropriate configuration settings for Windows Firewall on the network and starting it. The Windows Firewall Group Policy configuration can be found through the following location in the Group Policy console:

Computer configuration/administrative templates/network/network connections/windows Firewall Computer configuration/administrative templates/network/network connections/windows Firewall/domain profile Computer configuration/administrative templates/network/network connections/windows Firewall/standard profile

In Windows XP SP2, Windows Firewall defaults to blocking all ports, which means that server to client applications will not reach the client. In this case, you can authenticate and trust the request sent to the client by the server-side application by setting IPSec in Group Policy. The "Windows Firewall: Allow authenticated IPSec bypass" Group Policy setting allows you to specify whether to enable IPSec authentication for Windows firewall to allow unsolicited incoming messages from the specified system.

Command-line tools

The configuration and status information for Windows Firewall can be obtained by command line Netsh.exe. We can use the netsh firewall command to get firewall information and modify firewall settings.

Commands in the context: ------------------------------------------------------- ? -Displays a list of commands. Add-adds firewall configuration. Delete-deletes firewall configuration. Dump-displays a configuration script. Help-displays a list of commands. Reset-resets firewall configuration to default. Set-sets firewall configuration. Show-shows firewall configuration.

Security Warning

In Windows XP SP2, when a user runs an application locally and serves as an Internet server, Windows Firewall pops up a new Security warning dialog box (pictured above). You can use the options in the dialog box to add this application or service to the Windows Firewall exceptions. The exception configuration for Windows Firewall allows specific inbound connections to be allowed. If the program does not function correctly after using this method, you can isolate the problem by following analysis steps:

Add a program to an exception

To add a port to an exception

Using firewall security Records

Prohibit firewall (not recommended)