Results 1 to 9 of 9
  1. #1
    2 Star Lounger
    Join Date
    Dec 2009
    Location
    West Midlands, UK
    Posts
    153
    Thanks
    134
    Thanked 1 Time in 1 Post

    Windows 7 Firewall

    An article I have just read states that Win 7 firewall only operates for incoming data by default but can be configured to cover outgoing as well - I have also been told that it covers both ways by default. I have gone through all of the settings but cannot be sure whether it goes both ways or not. Help please

  2. #2
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    11,200
    Thanks
    139
    Thanked 1,250 Times in 1,125 Posts
    The Windows firewall comes, by default, with inbound and outbound rules. The behavior is a bit different - inbound connections are blocked unless there is a rule that allows them, outbound connections are allowed, unless there is a rule that blocks them.

    So, by default, unless there is a rule that prevents a specific connection, based on program, protocol or a combination of these and other configuration parameters, outbound connections are allowed. This is usually the opposite of 3rd party firewalls, that by default block outgoing connections, unless there is a rule to allow them.

    I don't use the Windows firewall but, surprisingly, all the existing rules are to allow outbound connections.

    The default behavior for inbound and outbound connections can be easily changed.

  3. The Following User Says Thank You to ruirib For This Useful Post:

    mike21 (2013-01-08)

  4. #3
    Super Moderator BATcher's Avatar
    Join Date
    Feb 2008
    Location
    A cultural area in SW England
    Posts
    3,048
    Thanks
    21
    Thanked 129 Times in 123 Posts
    Quote Originally Posted by mike21 View Post
    An article I have just read states that Win 7 firewall only operates for incoming data
    That would be true for the firewall introduced with Windows XP Service Pack 2, but all subsequent firewalls in Microsoft operating systems have been "both-way"...
    BATcher

    Correlation is not causation.

  5. The Following User Says Thank You to BATcher For This Useful Post:

    mike21 (2013-01-08)

  6. #4
    2 Star Lounger
    Join Date
    Dec 2009
    Location
    West Midlands, UK
    Posts
    153
    Thanks
    134
    Thanked 1 Time in 1 Post
    Thanks for both - but does this mean that it would be better to change to block outgoing connections unless a rule allows it - as the 3rd party firewalls; it seems on the face of it that the default is set such that to all intents and purposes it might just as well not exist

  7. #5
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    11,200
    Thanks
    139
    Thanked 1,250 Times in 1,125 Posts
    Quote Originally Posted by mike21 View Post
    Thanks for both - but does this mean that it would be better to change to block outgoing connections unless a rule allows it - as the 3rd party firewalls; it seems on the face of it that the default is set such that to all intents and purposes it might just as well not exist
    As it is configured by default, you are right. The purpose of an outgoing block, by default, would be to prevent rogue programs or malware, to phone home. There are those who feel the risk is not big (I run a 3rd party firewall, so I prefer to have that type of control). Of course, the interface is not the best to actually determine what will be blocked, if you change the default behavior (which is rather easy to do, for all the network types).

  8. The Following User Says Thank You to ruirib For This Useful Post:

    mike21 (2013-01-08)

  9. #6
    2 Star Lounger
    Join Date
    Dec 2009
    Location
    West Midlands, UK
    Posts
    153
    Thanks
    134
    Thanked 1 Time in 1 Post
    Thanks Ruirib - I will change the default to block outgoing data and see what happens - perhaps this is what the article in PC Advisor (UK) meant when it said that it only blocks incoming but can be configured - with difficulty - to block outgoing.

  10. #7
    Administrator
    Join Date
    Jun 2010
    Location
    Portugal
    Posts
    11,200
    Thanks
    139
    Thanked 1,250 Times in 1,125 Posts
    It's not hard to block outgoing traffic. You can achieve it easily, by opening the network and sharing center, then choosing the Windows firewall and then clicking Advanced Properties. You will get to a screen similar to this:

    Capture.JPG

    The dialog on top is accessed by clicking Windows Firewall Properties. You can click the different tabs for the profiles that you are using and then choose the option to block outgoing connections. You may then have to add rules for programs unable to access the internet. The firewall should warn you in such cases.

  11. #8
    Administrator
    Join Date
    Mar 2001
    Location
    St Louis, Missouri, USA
    Posts
    21,256
    Thanks
    3
    Thanked 724 Times in 644 Posts
    Once malware is on your system you have no clue about what it has done by the time it decides to "phone home". I've run with the Windows firewall only for 5 or 6 years in its default mode and never had a problem. It is just one piece of a multi-layered defense system.

    Joe

  12. #9
    Super Moderator CLiNT's Avatar
    Join Date
    Dec 2009
    Location
    California & Arizona
    Posts
    5,780
    Thanks
    141
    Thanked 541 Times in 498 Posts
    The Windows 7 firewall was designed with very broad protections in mind, which is OK for most users.
    Depending upon your very specific needs, You might find a 3rd party firewall far easier to configure than the MS offering.

    But it will depend upon what your needs are.
    DRIVE IMAGING
    Invest a little time and energy in a well thought out BACKUP regimen and you will have minimal down time, and headache.

    Build your own system; get everything you want and nothing you don't.
    Latest Build:
    ASUS X99 Deluxe, Core i7-5960X, Corsair Hydro H100i, Plextor M6e 256GB M.2 SSD, Corsair DOMINATOR Platinum 32GB DDR4@2666, W8.1 64 bit,
    EVGA GTX980, Seasonic PLATINUM-1000W PSU, MountainMods U2-UFO Case, and 7 other internal drives.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •