A firewall is software or hardware that checks information coming from the Internet or a network, and then either blocks it or allows it to pass through to your computer, depending on your firewall settings.
A firewall can help prevent hackers or malicious software (such as worms) from gaining access to your computer through a network or the Internet. A firewall can also help stop your computer from sending malicious software to other computers.
Even if you think there is nothing on your computer that would interest anyone, a worm could completely disable your computer, or someone could use your computer to help spread worms or viruses to other computers without your knowledge.
Allowing a program through the firewall, sometimes called unblocking, is when you create an exception to enable a particular program to send information back and forth through the firewall. You can also allow a program through the firewall by opening one or more ports. For more information, see Allow a program to communicate through Windows Firewall.
E‑mail viruses are attached to e‑mail messages. A firewall can't determine the contents of e‑mail, so it can't protect you from these types of viruses. You should use an antivirus program to scan and delete suspicious attachments from an e‑mail before you open it. Even when you have an antivirus program, you should not open an e‑mail attachment if you're not positive it's safe. For more information, see Avoiding e‑mail viruses.
•
Phishing scams
Phishing is a technique used to trick computer users into revealing personal or financial information, such as a bank account password. A common online phishing scam starts with an e‑mail message that appears to come from a trusted source but actually directs recipients to provide information to a fraudulent website. Firewalls can't determine the contents of e‑mail, so they can't protect you from this type of attack. For more information, see Phishing Filter: frequently asked questions.
You must be logged on as an administrator to perform these steps.
The new Windows Firewall with Advanced Security is a Microsoft Management Console (MMC) snap-in that provides more advanced options for IT professionals. With this firewall you can set up and view detailed inbound and outbound rules and integrate with Internet Protocol security (IPsec).
Follow these steps to open Windows Firewall with Advanced Security:
1.
Open Administrative Tools by clicking the Start button , clicking Control Panel, clicking System and Maintenance, and then clicking Administrative Tools.
2.
Double-click Windows Firewall with Advanced Security. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
NoteYou must be a member of the Administrators group or the Network Operators group to use Windows Firewall with Advanced Security.
You must be logged on as an administrator to perform these steps.
To find ICMP and logging settings, open Windows Firewall with Advanced Security.
1.
Open Administrative Tools by clicking the Start button , clicking Control Panel, clicking System and Maintenance, and then clicking Administrative Tools. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
2.
Double-click Windows Firewall with Advanced Security.
To change logging settings:
1.
Under Public Profile, click Windows Firewall Properties.
2.
Click the tab for the profile that you want to change.
3.
Under Logging, click Customize.
4.
In the dialog box that appears, change the settings you want to change, and then click OK.
You can specify ICMP settings by creating inbound or outbound rules using the ICMPv4 or ICMPv6 protocol.
Yes, because router-based firewalls
only provide protection from computers on the Internet, not from
computers on your home network. For example, if a mobile computer or guest computer connects to some other network, becomes
infected with a computer worm, and
then connects to your home network, your router-based firewall won't be able to
prevent the spread of the worm. However, a firewall running on each
computer on your network can help control the spread of worms.
If you have allowed certain programs through the firewall, those settings will be lost for all network locations, not just the location of the network that you are currently connected to, and the programs you allowed will now be blocked by the firewall.
Get a good antivirus program and keep it up to date by regularly downloading updates from the program manufacturer's website. Many antivirus programs update automatically. For more information, see How can I help protect my computer from viruses?
•
Use Microsoft Windows Defender or another antispyware program. These programs can help protect your computer from spyware and other malicious software. For more information about Windows Defender, see Using Windows Defender.
If you install, uninstall, or re-install a program when you are connected to different networks, several instances of that program can appear on the Exceptions tab. This is because if each network that you connect to has a different network location, you must create an exception for each category. For example, you might create an exception while you are connected to a "Public place" network, and then, later, you might connect to a "Home or work" network and create that exception again.
This can also happen when Group Policy is applied.
A device that sends, or routes, information between two networks (for example, between a home network and the Internet). Routers find the quickest paths for sending information, which makes network connections faster. Routers can be wired or wireless.
Group Policy
__elbasuer__
Group Policy
An administrative tool for managing user settings and computer settings across a network.
Internet Protocol security (IPsec)
__elbasuer__
Internet Protocol security (IPsec)
Rules that computers follow to provide private and secure communication over Internet Protocol (IP) networks, through the use of cryptographic security services.
Port
__elbasuer__
Port
A hardware- or software-based interface used to transfer information between a computer and other devices. Hardware ports are physical connections that are visible on the outside of the computer. Software ports are the numbered gateways in programs that software programs use to exchange information.
Update
__elbasuer__
Update
Additions to software that can prevent or fix problems, enhance the security of a computer, or improve a computer's performance.
Spyware
__elbasuer__
Spyware
Software that can display advertisements (such as pop-up ads), collect information about you, or change settings on your computer, generally without appropriately obtaining your consent.
Snap-in
__elbasuer__
Snap-in
A tool or set of tools that can be added to the Microsoft Management Console (MMC) to help manage a computer.
Default
__elbasuer__
Default
A predefined setting. You can accept the default option settings, or you can change them to suit your own preferences.
Domain
__elbasuer__
Domain
A collection of computers on a network that share a common database and security policy. A domain is administered as a unit with common rules and procedures, and each domain has a unique name.
Virus
__elbasuer__
Virus
A malicious computer program designed specifically to replicate itself and spread from computer to computer. A virus may damage hardware, software, or data.
Exception
__elbasuer__
Exception
An instruction that tells Windows Firewall to open a port briefly, allow a program or service to pass a specific piece of information through, and then close the port. These instructions are called "exceptions" because normally the firewall blocks all unsolicited attempts to send information.
Worm
__elbasuer__
Worm
A self-replicating program, similar to a virus. A worm can make it possible for a malicious user to take over your computer or can send out enough copies of itself to cause your computer or a web or network server to stop responding.
Malicious software
__elbasuer__
Malicious software
Software designed to deliberately harm your computer. For example, viruses, worms, and Trojan horses are malicious software. Also known as malware.
Help and How-to
