Windows Firewall vs. NPF

hello...

I used to run 'Norton Personal Firewall'...& it had a function that would
detect & disallow dangerous connections.

for example, it used to pop up from time to time w/ an 'Internet Access
Control' window...during web surfing...advising me to block a 'high risk
remote system' which was attempting to access my machine. They were various
Inbound TCP, UDP, IMCP & NetBIOS Services...utilizing any number of
different ports.

So my question is...now that I'm running XP Pro...(& assuming my 'Windows
Firewall' is up & running)...does Windows Firewall have a function that
accomplishes the same thing ???

thanks,


mark4man


BTW - side question: how does one actually determine if Windows Firewall is
up & running ???

mark4man wrote:
I used to run 'Norton Personal Firewall'...& it had a function that
would detect & disallow dangerous connections.

for example, it used to pop up from time to time w/ an 'Internet
Access Control' window...during web surfing...advising me to block
a 'high risk remote system' which was attempting to access my
machine. They were various Inbound TCP, UDP, IMCP & NetBIOS
Services...utilizing any number of different ports.

So my question is...now that I'm running XP Pro...(& assuming my
'Windows Firewall' is up & running)...does Windows Firewall have a
function that accomplishes the same thing ???
BTW - side question: how does one actually determine if Windows
Firewall is up & running ???

The Windows Firewall in Windows XP is inbound - the only exceptions allowed
are those you define. It's very simplistic and easy to manage. It's not
going to bug you about anything, it's just not going to allow anything
through you didn't specify (or that doesn't get specified by applications
you install and allow to change the firewall settings.)

http://www.google.com/search?q=How+t...ws+XP+firewall

--
Shenan Stanley
MS-MVP
--
How To Ask Questions The Smart Way
http://www.catb.org/~esr/faqs/smart-questions.html

mark4man wrote:
hello...

I used to run 'Norton Personal Firewall'...& it had a function that
would detect & disallow dangerous connections.

for example, it used to pop up from time to time w/ an 'Internet Access
Control' window...during web surfing...advising me to block a 'high risk
remote system' which was attempting to access my machine. They were
various Inbound TCP, UDP, IMCP & NetBIOS Services...utilizing any number
of different ports.

So my question is...now that I'm running XP Pro...(& assuming my
'Windows Firewall' is up & running)...does Windows Firewall have a
function that accomplishes the same thing ???


No, it doesn't.

WinXP's built-in firewall is usually adequate at stopping incoming
attacks, and hiding your ports from probes. What WinXP SP2's firewall
does not do, is protect you from any Trojans or spyware that you (or
someone else using your computer) might download and install
inadvertently. It doesn't monitor out-going traffic at all, other than
to check for IP-spoofing, much less block (or at even ask you about) the
bad or the questionable out-going signals. It assumes that any
application you have on your hard drive is there because you want it
there, and therefore has your "permission" to access the Internet.
Further, because the Windows Firewall is a "stateful" firewall, it will
also assume that any incoming traffic that's a direct response to a
Trojan's or spyware's out-going signal is also authorized.

ZoneAlarm, Kerio, or Sygate are all much better than WinXP's
built-in firewall, and are much more easily configured, and there are
free versions of each readily available. Even the commercially
available Symantec's Norton Personal Firewall is superior by far,
although it does take a heavier toll of system performance then do
ZoneAlarm or Sygate.

Having said that, it's important to remember that firewalls and
anti-virus applications, which should always be used and should always
be running, while important components of "safe hex," cannot, and should
not be expected to, protect the computer user from him/herself.
Ultimately, it is incumbent upon each and every computer user to learn
how to secure his/her own computer.



--

Bruce Chambers

Help us help you:
http://www.catb.org/~esr/faqs/smart-questions.html

http://support.microsoft.com/default.aspx/kb/555375

They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety. ~Benjamin Franklin

Many people would rather die than think; in fact, most do. ~Bertrand Russell

The philosopher has never killed any priests, whereas the priest has
killed a great many philosophers.
~ Denis Diderot