Windows 2000 Firewall?

  • Thread starter Thread starter JOEWARE
  • Start date Start date
J

JOEWARE

I heard that you configure an firewall on Windows 2000 Pro
using the MMC Console w/o buying a 3rd party firewall. Any
word (help) on this?
 
Properties of your network connection -> TCP ->properties ->Advanced ->
Options -> TCP/IP Filtering.

Anyway I trust on my firewall instead.


Bojidar Alexandrov
 
I'm in the Advanced TCP/IP Settings, but i do not see
TCP/IP Filtering options. I only see IP Security.
 
Hmmm probably it is only on server version...
Anyway I have'nt ever tried this - use regular firewall.

Bojidar Alexandrov
 
You can use ipsec filtering as a packet filter firewall but I much prefer a free
firewall such as Sygate or Zone Alarm for that purpose. Sygate has some very nice
logging capabilities. If you really insist the link below may be helpful. I usually
start with a mirrored block all IP rule, then add a mirrored permit all rule for the
lan subnet [if any] and then add the mirrored outbound permitted entries to the
permitted filter such as dns, http, and https [53udp/80tcp/443tcp]. I personally
prefer a perimeter firewall - even one of the cheap nat routers if using cable or dsl
is used and then use the ipsec/software solution as a second line of defense. ---
Steve

http://www.securityfocus.com/infocus/1559
 
You can use ipsec filtering as a packet filter firewall but I much prefer
a free
firewall such as Sygate or Zone Alarm for that purpose. Sygate has some
Click to expand...
very nice

Agree - I use Sygate too.
logging capabilities. If you really insist the link below may be helpful. I usually
start with a mirrored block all IP rule, then add a mirrored permit all rule for the
lan subnet [if any] and then add the mirrored outbound permitted entries to the
permitted filter such as dns, http, and https [53udp/80tcp/443tcp]. I personally
prefer a perimeter firewall - even one of the cheap nat routers if using cable or dsl
is used and then use the ipsec/software solution as a second line of defense. ---
Steve
Click to expand...

I've made advanced rules where I allow output only TCP, UDP allow some
specific cases and at the end there is block all rule.

Bojidar Alexandrov
 
Maybe you are thinking of Windows XP which has a builtin Internet Connection
Firewall. You might consider upgrading. The next Service Pack for XP
promises to have even more advanced firewall protection. There are also
free firewalls out there, as others have suggested.
 
Back
Top