Tutorials to .com

Tutorials to .com » Os » Winxp » Sp2 » Win XP SP2 firewall settings in detail on its own

Win XP SP2 firewall settings in detail on its own

Print View , by: iSee ,Total views: 12 ,Word Count: 2122 ,Date: Mon, 25 May 2009 Time: 2:41 AM

The English version has been released Windows XP service pack 2 (sp2), including the new windows firewall, which are referred to as the internet connection firewall (icf). windows firewall is a host-based stateful firewall, it does not discard all the incoming flow of requests, that is, those who did not correspond to the computer in response to a request sent by the flow (the flow of the request) did not correspond to the already designated as request is not permitted flow (abnormal flow). windows firewall to provide some degree of protection against those who did not rely on the request of the incoming traffic to attack computer networks, malicious users and programs.

In windows XP sp2 on, windows firewall has many new features, including:

By default all connections on the computer to open a new connection to all the global configuration options for the overall configuration of the new dialog box set, a new mode of operation, start the security restrictions on the local network, abnormal flow through the application file name specified on the internet protocol version 6 (ipv6) built-in support of

Netsh and Group Policy using the new configuration options

In this paper, a detailed description will be used to manually configure the windows firewall entirely new set of dialog box. With windows xp (sp2 version before) in the icf, these configuration dialog can be configured at the same time flow ipv4 and ipv6.

windows xp (sp2 version before) icf in a single box set contains (in the Connection Properties "Advanced" tab, "by limiting or preventing from internet access to this computer to protect my computer and network" check box) and a "Settings" button, you can use the button to configure the flow of logs to set up and allow icmp traffic.

In windows xp sp2, the Connection Properties "Advanced" tab on the box is replaced by a "Settings" button, you can use the button to configure the general settings, programs and services the authority to specify in the connection settings, log settings, and allow the icmp traffic.

"Settings" button will run the new control panel windows firewall program (available on the "network and internet connectivity and security center" category to find).

The new windows firewall dialog box contains the following tabs:

"General" "abnormal," "High" "General" tab

In the "General" tab, you can choose the following options:

"On (recommended)"

Choose this option to "Advanced" tab, select all the network connections windows firewall enabled.

windows firewall will only allow the opening of the request of the incoming flow and abnormal. Abnormal flow in the "abnormal" configuration tab.

"Abnormal traffic is not allowed"

Click this option to only allow incoming traffic requests. This anomaly will not allow incoming traffic. "Abnormal" on the settings tab will be ignored, all connections will be protected, regardless of the "Advanced" settings tab how.

"Disable"

Choose this option to disable windows firewall. Not recommended to do so, especially for direct access through the internet network connection.

Note for windows xp sp2 to run all the computer connections and the newly created connection, windows firewall, the default setting is "On (recommended)." This may not affect those who rely on the request of the incoming flow of communication procedures or services. Under such circumstances, you must identify the operation of those procedures is no longer them or add them to the abnormal flow of traffic. Many procedures, such as internet browsers and e-mail client (eg: outlook express), do not rely on the incoming request does not flow, and thus the opening of windows in the case of a firewall correctly.

If you use Group Policy to configure to run windows xp sp2 firewall windows computer, you configure Group Policy settings may not allow for local configuration. Under such circumstances, the "General" tab on the tab and other options may be gray, but can not choose, or even local administrators can not choose.

Based on the windows firewall group policy settings allow you to configure a domain configuration file (you will be a group to connect to a network domain controller that contains the application when windows firewall settings) and the standard configuration file (a group of would like to connect to your This internet domain controller does not contain the network by applications windows firewall settings). These configuration dialog box that displays only the current configuration file by the application of the windows firewall settings. To view the current configuration file is not the application settings, use the command netsh firewall show. To change the current application has not been set up configuration files, use the netsh firewall set command.

"Abnormal" tab

In "abnormal" tab, you can enable or disable an existing program or service, or maintenance for the definition of abnormal flow in the list of procedures or services. Elected in the "General" tab of the "abnormal flow does not allow" option, the abnormal flow will be rejected.

For windows xp (sp2 version before), you can only be based on transmission control protocol (tcp) or User Datagram Protocol (udp) port to the definition of abnormal flow. For windows xp sp2, you can tcp and udp ports in accordance with the procedures or services, or the file name to the definition of abnormal flow. Procedures or services in the tcp or udp port unknown or the need to start programs or services identified in the dynamic case, this configuration allows the flexibility to configure abnormal flow easier.

Have a group of pre-configured programs and services, including:

File and Print Sharing, Remote Assistance (enabled by default), Remote Desktop, upnp framework, these pre-defined procedures and services can not be deleted.

If the Group Policy permission, you can also click the "Add Program", created the name based on the procedural requirements specified in the additional abnormal flow, and by clicking the "Add Port" and create based on the specified port tcp or udp traffic anomalies.

When you click the "Add Program" will pop up the "Add Program" dialog box, you can choose, in its procedure or browse the file name of a program.

When you click the "Add Port" will pop-up "Add Port" dialog box, where you can configure a tcp or udp port.

New windows firewall is one of the characteristics of incoming traffic to the scope of the definition. The scope of the definition of abnormal flow to allow the launching of the network segment. In the definition of the scope of program or port, you have two options: allow ip from any abnormal flow of address.

"But I only network (subnet)"

Abnormal traffic to allow only ip address from the following, that is, it is to receive the flow of the network connection to connect to the local network segment (subnet) to match. For example, if the network connection is configured for the ip address of 192.168.0.99, subnet mask is 255.255.0.0, then the abnormal flow only allow 192.168.0.1 to 192.168.255.254 range from the ip address.

When you want to allow all the local home network to connect to the same subnet to access a program or service, but do not want to allow potentially malicious internet users visit, then "only just my network (subnet)" set The address range will be very useful.

Once added to a program or port, it is in the "Programs and Services" list was disabled by default.

In "abnormal" tab to open all programs or services on the "Advanced" tab, select all the connections are enabled.

"Advanced" tab

"Advanced" tab contains the following options:

Network connection settings, security logs, icmp, default settings

"Network Connection Settings"

In the "Network Connection Settings", you can:

1, specifies in its windows firewall enabled on the interface sets. To enable windows firewall, check the network connection name of the back of the box. To disable windows firewall, then clear the check box. By default, all network connections are enabled windows firewall. If a network connection does not appear in this list, then it is not a standard network connection. Examples include internet service providers (isp) to provide a custom dial-up procedures.

2, by clicking the network connection name, then click the "Settings", configure a separate network connection Advanced Configuration.

If the removal of "Network Connection Settings" in all the check box, and then the windows firewall will not protect your computer, regardless of whether your "General" tab, select the "On (recommended)." If you are in the "General" tab, select the "abnormal traffic is not allowed", then "Network Connection Settings" in the settings will be ignored, in which case all the interfaces will be protected.

When you click the "Settings" will pop-up "Advanced Settings" dialog box.

In the "Advanced Settings" dialog box, you can in the "services" tab to configure specific services (based solely on tcp or udp ports to configure), or "icmp" tab to enable a specific type of icmp traffic.

This is equivalent to two tabs windows xp (sp2 version before) icf configuration of the Settings tab.

"Security Log"

In the "Security Log", click "Settings" to "Log Settings" dialog box to specify the configuration of windows firewall log,

In the "Log Settings" dialog box, you can configure whether or not to record dropped packets or successful connections, and the designation of the log file name and location (the default setting for systemrootpfirewall.log) and its maximum capacity.

"Icmp"

In the "icmp", click "Settings" in order to "icmp" dialog box, specify permit icmp traffic type,

In the "icmp" dialog box, you can enable and disable windows firewall to allow in the "Advanced" tab, select all connections incoming icmp message type. icmp news for the diagnosis, reporting error conditions and configuration. By default, the list will not allow any icmp message.

Diagnosis of a common connection problems is to use the ping tool steps to test your computer trying to connect to the address. In the test, you can send a icmp echo message, and then get a icmp echo reply message as a response. By default, windows firewall does not allow incoming icmp echo message, so the computer can not be sent back an icmp echo reply message as a response. In order to configure the windows firewall to allow incoming icmp echo message, you must enable the "Allow incoming echo request" set.

"Default settings"

Click "Restore Defaults" will reset the windows firewall back to its initial installation state.

When you click the "Restore Defaults", the system will change windows firewall settings before you are prompted to verify their own decisions.


Windows XP SP2 Articles


Can't Find What You're Looking For?


Rating: Not yet rated

Comments

No comments posted.