Familiar with the use of Vista in the built-in firewall

Network security has been more and more people pay attention to it, and in ensuring their own computer security, the most important is a means to install antivirus software, network firewalls and anti-spyware, and other procedures.
As early as the era of Windows XP, Microsoft in the system by adding a built-in firewall, this is what we initially saw the Internet Connection Firewall (ICF), it can provide basic packet filtering function. To the XP SP2, this built-in firewall was officially renamed Windows Firewall, and a marked improvement, such as providing start-up and shutdown of the protection capacity, but still is one-way protection, that is the only access to a computer The review of data interception. So many computer users have chosen a third-party personal firewall products, such as Kaspersky or ZoneAlarm.
Demand for different uses two types of interface
In Windows Vista, Windows Firewall have been making considerable progress, it will not only like XP SP2, as the control panel access through the firewall user interface, but also to provide technical personnel through the MMC console configuration of the firewall via advanced features.
Vista's firewall with two separate configuration interface: the basic configuration interface can control panel to open the Security Center, advanced configuration interface requires users to create customized MMC. This configuration independent primary user interface design can be avoided because of improper allocation lead to reduced security of the system, but also provides for the advanced user more control the inflow and outflow of data capacity. In addition, users can also netsh advfirewall in the order in the command line configuration Vista's firewall, or through the creation of the script the way in more than one computer for automatic firewall configuration. In addition, users can also group policy to control the Vista firewall configuration.
The control panel's basic configuration
With XP, users can "General" tab directly turned on or off the firewall and can block all proceedings, without the need to consider the exceptions.
"Block All Programs" option is a very convenient option, especially when the user in a public Wi-Fi network. It allows system temporary prohibition of "exceptional" any procedure provided for in the access network, and when a user in a relatively secure network environment, to shut down this option, the restoration of previous settings.
And XP, Vista firewall in the basic settings, is an exception in the "Exceptions" tab in the set. Users can check the programs or services to lift their block on the firewall.
If you wish to cancel a stop the process and the process is not to stop the list, the user can click on "Add Program" button to add. Add in the dialog process, the user can program from the list or through the file browser choice of the program. Through the "Change Scope" option, the user can only allow in a range of procedures for access to the network. The scope includes:
Any computer, including on the Internet computer.
I am the only local area network (subnet).
Since the definition of IP address or sub-net.
In addition, users can also choose a firewall blocking software is to be issued after the alarm.
"Advanced" tab allows users to choose needs to be a firewall to protect the network connection.
In this tab, users can configure the log (or packet loss record of successful connections), set the maximum capacity of the log. The system set up ICMP how to respond to the request. By default, the only response to the ICMP request packets will be receiving, the rest of the ICMP request are prohibited.
Return to the default settings through the button, the user can cancel all changes to the firewall will be set up to restore the system installed by default.
Vista Firewall Advanced Settings
Since the establishment of the definition of MMC
To Show Advanced Settings, users need to create a custom MMC. Following is the establishment of methods:
1. Click Start Programs Accessories and select Run.
2. In the run column type mmc.exe. Users may need to import certificate or click on the management of operational procedures for certification.
3. Enter the MMC, click File Add / Remove Snap-in.
4. Available Snap-ins moving down the list and select Windows Firewall With Advanced Security. Double-click or select it and click the Add button.
5. Select Computer dialog box, choose the default (Local Computer) and then click Finish.
6. Add / Remove Snap-ins dialog click OK.
Now users to expand the tree left of the list, we will see Vista firewall to the right of the Advanced Settings page.
Vista can be customized multiple configurations
In Vista, users can customize the firewall for a variety of configurations, such as enterprise domain for the network configuration (notebook users can log in the company domain or out), or for the family network configuration (for example, the family point-to-point network ), Or the public network environment is suitable for the configuration (for example, in the airport hotel to connect to the public WI-FI network). Each configuration are independent of each other. Therefore, when a user in a corporate network, or even shut down Vista's firewall, because basically in the enterprise network with more advanced firewall, and connect to home networks or public wireless network, the firewall can be opened in time.
To change the variety of configurations, users can set Windows Firewall Properties. In the Domain, Private, and Public Profile tab, the user can turn on or off the firewall, can also send and receive requests for the connection or through the shielding. In this three configurations, are sent by default can connect, connect to receive the request was refused (to allow exceptions). Users can also connect all of shielding are located, including the list of exceptions to the procedure. (Each card configuration options in the same content)
Through the Customize button, the user can configure more of each individual adjustments. For example, users can set to receive when the connection request was refused, issued a warning information system, can also set it to receive multicast or broadcast when the unicast response. In addition, users can also set up projects in the log configuration options (or packet loss can be successfully connected, and so on a recorded).
Once users set up and configure IPSec attributes of each, you can connect to the next step on computer security settings, this set used to determine when and how the two computers (or a group of computer companies) to establish a secure connection. To carry out the relevant settings, users will need to right-click on the left side of the console panel Computer Connections Security and select New Rule. This step will open the New Connection Security Rule Wizard, the new safety rules connection wizard, the user can select categories in the following types of rules:
Isol ATI on: Based on the domain of health status or system of standards such as restricted connection.
Authentication exemption: you can specify certain computer and the machine does not necessarily certification.
Server to server: to designate certain link between the computer does not require certification.
Tunnel: The Rules for the Gateway system to connect between the certification.
Custom: If the above rules do not suitable, users can customize the rules.
The next step is to provide the conditions necessary for the rules. For example, when users set up a custom rules, it is necessary to specify the end, the end contains a computer or a group. Users via IP address or address range of one and to set up multiple computers, users can also be a pre-determined location as the end of one, such as the default gateway, DNS server, DHCP server or local sub-net.
For some types of rules, users need to establish rules conditions. For example:
Users can request to send and receive all the connections to verify, which means that under no circumstances should the use of certification, it is not necessary.
Users can send requests to authenticate the connection or the connection to receive requests for certification. Not certified to receive the request will be shielded, and send connection requests will be verified.
At the same time, users can request to receive and send the link to certification. No links have been refused accreditation.
Users can also choose to connect not need any certification.
Next, users need to select certification, and above this point on the IPSec configuration item attributes are very similar (depending on the type of users to create rules).
Finally, users need to select the current rules which apply to the firewall configuration, and named for the rules, and fill out the introduction (optional). User-created rules will appear in the central part of pages.
Users can configure or state (enabled / disabled) filtering rules. Therefore, the user can only display the current configuration of the safety rules, or only show that the rules be disabled. Users can also through the View menu to select among the region shown by the contents out.
Users can right-click at any time by the middle of the rules, then select Disable Rule or Delete disable or delete the rules. When application of the rules, the same method can enable rules. In addition, right-click on the rules, choose Properties, users can also modify the rules of the various.
In order to create a program or a corresponding port security rules, the need for users to receive and send rules. Vista has its own built-in a series of rules, or by clicking on the Inbound Rules Outbound Rules, the user can see that these built-in rules.
To disable or delete these prefabricated rules, or create a rule, users can right-click on the corresponding rules, or click on the right side of the corresponding function. By choosing the rules Properties, the user can modify the rules.
To create a new receive and send rules, the user can from the drop-down menu or right-click on the console panel, select New Rule. After the new rules will open a wizard.
Wizard dialog in the first screen, the user can choose the computer through an application and the establishment of a firewall port, or select a service windows (default), Furthermore, users can customize the rules.
Here, we think that a program to connect to explain the rules as an example. We chose Program and click Next.
In the next screen, users will need to select all the procedures or rules applied only for a program. If you choose a program, users will need to open your browser, positioning the program.
Next, when users need to select the program when trying to establish a connection (in this case, because we receive is established by the rules, the procedure is here to receive connection requests), firewall action. The user can choose the following firewall actions:
The procedure allows all the connections, including security and insecurity.
Only allow secure connection. If the user has the choice, then can also choose to connect the data encryption to protect data security. If users do not choose this feature, the link will require authentication and data integrity testing, but no data encryption. Users can also select the connection priority in Block rules, and it is easy to administrators through remote management tools for computer management.
Block all connections. If you wish to block all access to the connection, P2P software such as the connection request, can choose this.
In the next screen, the user can choose the rules applied to all firewall configuration or a firewall configuration. At the same time, but also the rules of naming.
The port for a set of rules, and the above mentioned basic similar, the only difference is that the user must enter a TCP or UDP port number, location rather than procedures. Users can for a software or a client of some kind of agreement to develop the rules, and rules can also be applied to a certain destination (computer or computer group).
Surveillance
Senior firewall configuration one of the most useful function, as well as the establishment of a firewall Advanced Security MMC console the most important reason is that surveillance functions. In monitoring capabilities, users can view the rules and their property status.
Through the right side of the console features available list, the user can be derived firewall rules for txt text file, or a comma delimited database files (. Csv).
Aggregate
Although Vista's firewall on the surface and Windows XP SP2 firewall there is no difference between, but once the user through the firewall console access to the advanced configuration, you will find Vista's firewall functions and configuration parameters far more than XP SP2. Vista firewall can not only send and receive data and to intercept and review, but also allows users to customize the rules, completely satisfy the various needs of users.