|
| | | 
Administrator
Group: Administrators
Last Login: 11/9/2009 11:29:53 AM
Posts: 2,112, Visits: 2,281 |
| Out of the box Vista's firewall looks like a regular xp port over. When in reality it now check both incoming and outgoing packets unlike xp. By default all incoming packets are allowed since no default rules are set. To change this go to your run command type "mmc" and go to "file" > "add snap in" and find "advanced windows firewall settings". Go ahead and add this now you can naviate all your rules for both incoming and outgoing traffic. Enjoy!
AMD64 X2 5200+ 2.60GHz | 3GB DDR 667 | RAID 0 SATA3.0 WD Caviars 320GB total | Foxconn MCP61VM2MA-RS2H Geforce 6100 nforce400 chipset | Vista Ultimate x86
 |
| |
| | | | Vista Newbie
Group: Forum Members
Last Login: 3/6/2007 1:36:46 PM
Posts: 35, Visits: 18 |
| | |
| | | | 
Vista Newbie
Group: Forum Members
Last Login: 3/19/2007 2:07:40 PM
Posts: 28, Visits: 54 |
| Most excellent! Thanks!
------------------------Running Vista Ultimate on: Pentium 3.2E CPU, Asus P4C800-E mobo, 2Gb PC-3700 RAM, ATI Radeon X800XL 256Mb graphics card, Audigy 2 ZS Platinum sound card, two WD Raptor 74GB hard drives, one WD 240GB IDE drive, Sony Double-Layer DVD-RW, Plextor DVD-RW, Antec P-160 case, one empty wallet, ...  |
| |
| | | |
Group: Forum Members
Last Login: 8/18/2007 2:41:25 AM
Posts: 2, Visits: 13 |
|
How does Vista map Firewall Rules to Exceptions ? On enabling/disabling one Exception, the status of multiple rules gets changed.
Where are details about Exceptions stored? Are they stored distinct from Firewall Rules in the registry?
From where can I retrieve basic firewall Configuration info as can be seen in the Control Panel > Windows Firewall interface or using the netsh firewall context to list Program Exceptions?
|
| |
| | | |
Group: Forum Members
Last Login: 9/28/2007 11:59:13 PM
Posts: 6, Visits: 8 |
| To know more about what are possible with Vista Firewall,
Start-->Administrative Tools-->Local Security Policy-->Windows Firewall with Advanced Security
You can write inbound and outbound rules. For me it seems that the Vista firewall is better than XP SP2 Firewall 
Regards,
Chaks |
| |
| | | |
Group: Forum Members
Last Login: 11/25/2007 3:47:01 AM
Posts: 1, Visits: 2 |
| | Could also try the free version of Vista FW Control from Sphinx Software, which offers application control to the Vista FW in both x32 and x64 versions. |
| |
| | | | Vista Newbie
Group: Forum Members
Last Login: 2/11/2008 11:34:28 PM
Posts: 11, Visits: 25 |
| Jason (2/6/2007)
Out of the box Vista's firewall looks like a regular xp port over. When in reality it now check both incoming and outgoing packets unlike xp. By default all incoming packets are allowed since no default rules are set. To change this go to your run command type "mmc" and go to "file" > "add snap in" and find "advanced windows firewall settings". Go ahead and add this now you can naviate all your rules for both incoming and outgoing traffic. Enjoy!
This seems dumb to me and goes against what a firewall is all about. Shouldn't it BLOCK all incoming packets by default? The exception to this is if the PC has initiated a connection outbound, in which the firewall has a port opened to allow the connection out and thus traffic will be allowed back in since the PC will be awaiting a response.
That is unless it really doesn't do what you mentioned here and does in fact act like an SPI firewall. |
| |
| | | |
Administrator
Group: Administrators
Last Login: 11/9/2009 11:29:53 AM
Posts: 2,112, Visits: 2,281 |
| Opteronguy (1/30/2008)
Jason (2/6/2007)
Out of the box Vista's firewall looks like a regular xp port over. When in reality it now check both incoming and outgoing packets unlike xp. By default all incoming packets are allowed since no default rules are set. To change this go to your run command type "mmc" and go to "file" > "add snap in" and find "advanced windows firewall settings". Go ahead and add this now you can naviate all your rules for both incoming and outgoing traffic. Enjoy!
This seems dumb to me and goes against what a firewall is all about. Shouldn't it BLOCK all incoming packets by default? The exception to this is if the PC has initiated a connection outbound, in which the firewall has a port opened to allow the connection out and thus traffic will be allowed back in since the PC will be awaiting a response.
That is unless it really doesn't do what you mentioned here and does in fact act like an SPI firewall.
No, you certainly don't want all inbound connections blocked. You will lost lots of functionality especially when it comes to interfacing with other devices on your network. If you have 1 computer in your whole house you may be able to do this but I don't recommend it. BTW- I don't think Vista's firewall is smart enough to know that you initiated an outbound connection, and therefore allow the proceeding inbound to come in. It just uses ACL's to allow and disallow activity on certain ports. So basically if you block all inbound connections even if you try to browse the web anything sent back to your computer from a webserver will be blocked..meaing no internet.
AMD64 X2 5200+ 2.60GHz | 3GB DDR 667 | RAID 0 SATA3.0 WD Caviars 320GB total | Foxconn MCP61VM2MA-RS2H Geforce 6100 nforce400 chipset | Vista Ultimate x86
|
| |
| |
|