Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
How to configure and use Windows XP built in Firewall
Security
Loads of folk seem to have a problem getting Windows Xp's built in Firewall to work properlly for them. In this guide I hope to explain how to configure it and show you it is actually quite good to use......
Although I would agree that Zonealarm and quite a few other 3rd party firewalls are easy to setup and use, they are missing some functionality that is useful to have - I had avoided using XP's bulit in Firewall until I got my XBox and wanted to use XBConnect to get online - it required a TCP and UDP port to be opened but Zonealarm couldn't open individual ports and I was forced into finding another solution.....here goes
Windows XP Built In Firewall
Enable the Firewall With Network Setup Wizard
1/ Run Network Setup Wizard (Control Panel-->Network and Internet Connections-->Setup)
2/ The firewall is enabled when you choose a configuration in the wizard that indicates that your computer is connected directly to the Internet.
Manually
1/ Goto Control Panel
2/ Double click Networking and Internet Connections
3/ Click Network Connections
4/ Right click the connection where you want the firewall enabled
5/ Click Properties from the drop down menu
6/ Goto the Advanced tab
7/ Check Protect my computer or network
8/ Click OK
Firewall now enabled on that connection
Disable the Firewall
1/Goto Control Panel
2/ Double click Networking and Internet Connections
3/ Click Network Connections
4/ Right click the connection to disable
5/Click Properties
6/ Select Advanced tab
7/ Uncheck Protect my computer or network
8/Click OK
Firewall now disabled on that connection
Open Ports in the Firewall
1/ Click Start
2/ Select My Network Places
3/ Network Tasks --> View Network Connections (Or right click My Network Places on desktop then Properties)
4/ Right click connection that you want
5/ Click Properties
6/ Select Advanced tab
7/ Click settings button (if it's greyed out you need to enable the Firewall see above)
8/ Click Add
9/ Type a name for the port your opening (eg. Napster : Port 6699)
10/ In name or IP address of the computer hosting this service on your network box type 127.0.0.1 *You can specify the IP address of an internal computer; however, in most cases, you use 127.0.0.1
11/ In external port and internal port boxes, type the port number - usually the same
12/ Select TCP or UDP
13/ lick OK
14/ Do this for each port to be opened
Programs and ports used
See http://www.chebucto.ns.ca/~rakerman/port-table.html for a decent list.
MSN Gaming Zone - TCP - 28800-29000 - UDP - 28800-29000
AOL Instant Messenger - TCP - 443,563 - UDP - none
Crimson Skies - TCP - 28805,28801,3040,1121 - UDP - none
Decent 3 - TCP - 1900 - UDP - 1900,2092
Diablo II - TCP - 4000 - UDP - 6112
Need for Speed - TCP - 9442 - UDP - 6112
Napster - TCP - 6699 - UDP - 6699
NetMeeting - TCP - 1731,1720,1503,522,389 - UDP - none
Rainbow Six - TCP - 2346,2347,2348 - UDP - none
XBConnect - TCP - 8602 - UDP - 8602
Theres plenty more obviously so add what suits your requirements
Hope you found this at least slightly useful
Although I would agree that Zonealarm and quite a few other 3rd party firewalls are easy to setup and use, they are missing some functionality that is useful to have - I had avoided using XP's bulit in Firewall until I got my XBox and wanted to use XBConnect to get online - it required a TCP and UDP port to be opened but Zonealarm couldn't open individual ports and I was forced into finding another solution.....here goes
Windows XP Built In Firewall
Enable the Firewall With Network Setup Wizard
1/ Run Network Setup Wizard (Control Panel-->Network and Internet Connections-->Setup)
2/ The firewall is enabled when you choose a configuration in the wizard that indicates that your computer is connected directly to the Internet.
Manually
1/ Goto Control Panel
2/ Double click Networking and Internet Connections
3/ Click Network Connections
4/ Right click the connection where you want the firewall enabled
5/ Click Properties from the drop down menu
6/ Goto the Advanced tab
7/ Check Protect my computer or network
8/ Click OK
Firewall now enabled on that connection
Disable the Firewall
1/Goto Control Panel
2/ Double click Networking and Internet Connections
3/ Click Network Connections
4/ Right click the connection to disable
5/Click Properties
6/ Select Advanced tab
7/ Uncheck Protect my computer or network
8/Click OK
Firewall now disabled on that connection
Open Ports in the Firewall
1/ Click Start
2/ Select My Network Places
3/ Network Tasks --> View Network Connections (Or right click My Network Places on desktop then Properties)
4/ Right click connection that you want
5/ Click Properties
6/ Select Advanced tab
7/ Click settings button (if it's greyed out you need to enable the Firewall see above)
8/ Click Add
9/ Type a name for the port your opening (eg. Napster : Port 6699)
10/ In name or IP address of the computer hosting this service on your network box type 127.0.0.1 *You can specify the IP address of an internal computer; however, in most cases, you use 127.0.0.1
11/ In external port and internal port boxes, type the port number - usually the same
12/ Select TCP or UDP
13/ lick OK
14/ Do this for each port to be opened
Programs and ports used
See http://www.chebucto.ns.ca/~rakerman/port-table.html for a decent list.
MSN Gaming Zone - TCP - 28800-29000 - UDP - 28800-29000
AOL Instant Messenger - TCP - 443,563 - UDP - none
Crimson Skies - TCP - 28805,28801,3040,1121 - UDP - none
Decent 3 - TCP - 1900 - UDP - 1900,2092
Diablo II - TCP - 4000 - UDP - 6112
Need for Speed - TCP - 9442 - UDP - 6112
Napster - TCP - 6699 - UDP - 6699
NetMeeting - TCP - 1731,1720,1503,522,389 - UDP - none
Rainbow Six - TCP - 2346,2347,2348 - UDP - none
XBConnect - TCP - 8602 - UDP - 8602
Theres plenty more obviously so add what suits your requirements
Hope you found this at least slightly useful