Windows Firewall with Advanced Security The new Windows Firewall with Advanced Security is a Microsoft
Windows Firewall with Advanced Security The new Windows Firewall with Advanced Security is a Microsoft
Management Console (MMC) snap-in that provides more advanced options for IT professionals. With this firewall, you can set up and view detailed inbound and outbound rules and integrate with Internet Protocol Security (IPsec). To access the Windows Firewall with Advanced Security, follow these steps:
1. Open Administrative Tools by clicking the Start button, clicking Control Panel, clicking System and Security, and then clicking Administrative Tools.
2. Double-click Windows Firewall with Advanced Security, as shown in Figure 7.7. If you are prompted for an administrator password or confir- mation, type the password or provide confirmation.
CHAPTER 7: Configuring Windows Firewall and Windows Defender
FIGURE 7.7 Windows Firewall with Advanced Security console.
You can also access the Windows Firewall with Advanced Security by clicking the Advanced settings option in the Windows Firewall screen. Of course, you must be a member of the Administrators group to use Windows Firewall with Advanced Security.
The Windows Firewall with Advanced Security management console enables you to configure the following:
. Inbound rules: Windows Firewall blocks all incoming traffic unless solicited or allowed by a rule, as shown in Figure 7.8.
. Outbound rules: Windows Firewall allows all outbound traffic unless blocked by a rule.
. Connection security rules: Windows Firewall uses a connection secu- rity rule to force two peer computers to authenticate before they can establish a connection and to secure information transmitted between the two computers. Connection security rules use IPsec to enforce secu- rity requirements.
. Monitoring: Windows Firewall uses the monitoring interface to display information about current firewall rules, connection security rules, and security associations.
Windows Firewall
FIGURE 7.8 Inbound rules.
You create inbound rules to control access to your computer from the net- work. Inbound rules can prevent
. Unwanted software being copied to your computer. . Unknown or unsolicited access to data on your computer. . Unwanted configuration of your computer from remote locations.
To configure advanced properties for a rule using the Windows Firewall with Advanced Security, do the following:
1. Right-click the name of the inbound rule and then click Properties.
2. From the properties dialog box for an inbound rule, configure settings on the following tabs:
. General: The rule’s name, the program to which the rule applies, and the rule’s action (allow all connections, allow only secure con- nections, or block).
. Programs and Services: The programs or services to which the rule applies.
. Computers: The computers that can communicate through the firewall.
CHAPTER 7: Configuring Windows Firewall and Windows Defender
. Users: The users that can communicate through the firewall. . Protocols and Ports: The rule’s IP protocol, source and destina-
tion TCP or UDP ports, and ICMP or ICMPv6 settings. . Scope: The rule’s source and destination addresses. . Advanced: The profiles or types of interfaces to which the rule
applies. You can also use the Windows Firewall with Advanced Security to create out-
bound rules to control access to network resources from your computer. Outbound rules can prevent
. Utilities on your computer from accessing network resources without your knowledge.
. Utilities on your computer from downloading software without your knowledge.
. Users of your computer from downloading software without your knowledge.