Introduction to Windows7 Firewall settings

1. Open "Control Panel -- system and security -- Windows Firewall" to enter the following interface:

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M02/80/19/wKioL1c37uKRxrTjAAFYfkzlctQ985.png "title=" 01.png "alt=" Wkiol1c37ukrxrtjaafyfkzlctq985.png "/>

It describes the basic Firewall state. On the left side of the menu bar, ' turn Windows Firewall on or off ' to set whether the firewall is enabled.

2. Click ' Advanced Settings ' in the left menu bar to enter the following screen:

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M00/80/19/wKioL1c37w6ATIHxAAEgZD6Ob40832.png "title=" 02.png "alt=" Wkiol1c37w6atihxaaegzd6ob40832.png "/>

The middle part is about the basic description of the firewall, about the different network locations (domain, private, public) of the configuration file. You can select default. In order to demonstrate here, the configuration file needs to be modified.

3. Select ' Windows Firewall Properties ' below the configuration file to pop up the following dialog box:

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M01/80/19/wKioL1c37zTyXE89AABqTZoui_0280.png "title=" 03.png "alt=" Wkiol1c37ztyxe89aabqtzoui_0280.png "/>

here we will inbound connections in ' Public profile ' are also changed to ' block ', then ' OK ' to save settings.

XxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxXXXXX

Additional notes:

In Control Panel- Network and Internet -and network and Sharing Center, there is a basic description of the current network connection, and a description of the network location where the current connection is located in view active network , click on ' Public network ' to pop up the following interface, you can change the network location of the current network connection, that is, corresponding to the different configuration files mentioned above.

650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M02/80/1C/wKiom1c37nOQRy6UAAH8TaukWAg819.png "title=" 04.png "alt=" Wkiom1c37noqry6uaah8taukwag819.png "/>

XxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxXXXXX

4. after setting up profiles for different network locations, click on ' Inbound rules ' or ' outbound rules ' on the left to enter detailed settings. (Ps: Inbound rules can be understood as remote host access locally, the same way, outbound rules can understand the cost of access to the remote host)

650) this.width=650; "src=" Http://s5.51cto.com/wyfs02/M00/80/19/wKioL1c373nxiUESAABNmEQessY310.png "title=" 05.png "alt=" Wkiol1c373nxiuesaabnmeqessy310.png "/>

Some of the inbound rules are set up as shown in the current (previous 8 ) of this machine:

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M01/80/19/wKioL1c376SSEDdZAAGhcy97Yjw075.png "style=" float: none; "title=" 06.png "alt=" Wkiol1c376sseddzaaghcy97yjw075.png "/>

in the default settings, the previous 8 rules are not, and because of the previous settings (including ' Enable ' firewall in ' turn firewall on or off ') and set the default ' in ' Advanced Settings-- Windows Firewall Properties ' public profile Inbound connection ' and ' outbound connection ' as the ' block ' option), the system cannot access the Internet.

5. then, here's how to set up a firewall to make your browser access the Internet. On the right side of the inbound rules for Windows Firewall with Advanced Security , there are related inbound rule actions, as shown in:

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/80/1C/wKiom1c37sDzAdfvAAAjFc2enkc129.png "style=" float: none; "title=" 07.png "alt=" Wkiom1c37sdzadfvaaajfc2enkc129.png "/>

6. Select ' New rule ' and the following dialog box appears:

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/80/19/wKioL1c376WgpJptAABZg-Wvy0s510.png "style=" float: none; "title=" 08.png "alt=" Wkiol1c376wgpjptaabzg-wvy0s510.png "/>

Here, you can choose which rule types you want to create can be set based on the ' program ' port. Program-and Port-based settings are not described here and can be tried on your own.

7. below is a detailed description of how to set up with the ' custom ' rule type. Select ' Customize ' and click ' Next ' to bring up the following dialog box:

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M00/80/1C/wKiom1c37sCymEzfAABd9z37GlQ648.png "style=" float: none; "title=" 09.png "alt=" Wkiom1c37scymezfaabd9z37glq648.png "/>

Because the current description is how to set up a firewall to enable the browser to access the Internet, and there are many browsers, if you specify ' this program path ' or the rule type created in the previous step to choose based on ' program ' to do settings, when using multiple browsers, multiple rules, too cumbersome (of course, can also be in the previous step When you create a rule type, you choose to set it based on ' Port ', so the selection rule is applied to ' all programs ' here. We know that using a browser is a general access to a remote (http) or 443(HTTPS) port. Of course, some websites use 8080 ports. The following

For example, the other port settings are similar.

8. Click ' Next ':

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/80/19/wKioL1c376XAOpTVAACGTKKzsxU335.png "style=" float: none; "title=" 10.png "alt=" Wkiol1c376xaoptvaacgtkkzsxu335.png "/>

9. set the ' protocol type ', the browser access is a reliable TCP-based protocol to transmit data, local port arbitrary, remote port specified as '", set as follows:

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M00/80/1C/wKiom1c37sHyRZUgAAAY2hhzh_s203.png "style=" float: none; "title=" 11.png "alt=" Wkiom1c37shyrzugaaay2hhzh_s203.png "/>

next .

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M00/80/19/wKioL1c376aCjo3eAACXHRhaUP4533.png "style=" float: none; "title=" 12.png "alt=" Wkiol1c376acjo3eaacxhrhaup4533.png "/>

One . You can set up control access based on IP address, if there is no special need, do not set here, direct ' next '

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M01/80/1C/wKiom1c37sHxZmHbAACMdrf3Syc770.png "style=" float: none; "title=" 13.png "alt=" Wkiom1c37shxzmhbaacmdrf3syc770.png "/>

Select ' Allow connection ' and proceed to ' next ':

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M01/80/19/wKioL1c376aBZDfQAACAq4cfrNs532.png "style=" float: none; "title=" 14.png "alt=" Wkiol1c376abzdfqaacaq4cfrns532.png "/>

set this rule to take effect different network location, about the network location, has been described before, no longer repeat, such as no special needs, direct ' next ':

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/80/1C/wKiom1c37sHSjJ6-AABy4eSNJrA868.png "style=" float: none; "title=" 15.png "alt=" Wkiom1c37shsjj6-aaby4esnjra868.png "/>

' name ' is a required entry, you can set a more convenient memory name, such as here is the TCP protocol based on the port to do the settings, the description can be omitted, depending on the individual circumstances. Then click ' Finish '.

Now many websites begin to use encrypted HTTPS to access, it is also necessary to refer to the above settings 443 Port

Outbound rules are also set because the default inbound and outbound rules for public profiles have been set to ' block ' before. The approximate setting ends here.

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Add some common protocols and port numbers:

Port Number Protocol Comment

1 Tcpmux mainly in SGI Irix machines

5 Remote Job ENTRY (RJE) remoting

7 Echo Echo

* Message Send Protocol (MSP) message Sending protocol

Ftp-data File Transfer Protocol

Ftp-control File Transfer Protocol

SSH Remote login Protocol

Telnet Remote Login

Single mail Transfer Protocol SMTP Simple Mail Transfer Protocol

MSG ICP

PNS Time

The Host Name server (NAMESERV) hostname service

Protocol Login Host Protocol TACACS

The Domain Name System (DNS)

Trivial file Transfer Protocol Small Files Transfer Protocol

Gopher Services Information Retrieval Protocol

Finger Query remote host online users and other information

HTTP Hypertext Transfer Protocol

The Network Printing protocol for NPP

The System control protocol for DCP

103 Standard e-mail standards

108 SNA Gateway Access Server

109 POP2 Mail Service

POP3 Client Access server-side mail Service

Transfer Protocol SFTP Simple File Transfer Protocol

118 SQL Services

119 Newsgroup NNTP

137 netbiso name Service NetBIOS names resolution

139 NetBIOS Datagram Service NetBIOS session service

143 interim Mail Access Protocol IMAP

The NetBIOS Session Service

156 SQL Server

161 SNMP Simple Network Management Protocol

179 Border Gatewat Protocol (BGP) Border Gateway Protocol

GACP Gateway Access Control Protocol

194 Internet Relay Chat IRC

197 Directory Location Service DLS

389 lightweight Directory Access Protocol LDAP

396 Novell Netware over IP

443 HTTPS Secure Hypertext Transfer Protocol

444 simple Network Paging Protocol SNPP

445 Microsoft-ds

458 Apple QuickTime

546 DHCP Client Dynamic Host Configuration Protocol – client

547 DHCP Server Dynamic Host Run Configuration Protocol – server side

563 SNEWS

569 MSN

Socks

Write at the end: in the network test often use the ping command, using the ICMP Protocol, there is no specific port number!!! And the ICMP protocol is divided into two versions of ICMPv4 ICMPv6 , respectively, corresponding to IPv4 and IPv6 .

This article is from the "junight" blog, make sure to keep this source http://junight.blog.51cto.com/10828785/1773537

Introduction to Windows7 Firewall settings