Services Connectivity


  1. Posts : 37
    7 home premium 64-bit
       #1

    Services Connectivity


    Can someone tell me what windows services and programs absolutely have to have an internet connection in order for network connectivity to function properly? I'm trying to setup Windows Firewall to work well with the home network I'm using. It uses wpa2 encryption, but when I join a network profile (public,home,work) setting the rules for the 'stock' rule sets to require at least secure communication as authentication and integrity, I can't get a connection. I'm also confused as to whether I have to use both ipv4 and ipv6 protocols. the network diagnostic prompted me that secure sockets needed to have a proper configuration to work correctly, and so I had to unblock that but I was unable to test whether or not allowing it to utilize secure measures would further block the connection because after SstSvc & a generic rule I created to prevent network access until I could configure the filewall, which blocked all incoming and outgoing connections for all programs, the only thing diagnostic would tell me is that the DNS server wouldn't respond. I set the adapter and connection to connect even if there was no SSID broadcast, but I'm unsure of what that even is, although it sounded accurate :/. So in short, I'm using Online Armor free firewall, and to be honest it seems like a good program, this is the third time I've installed it. This round though I noticed that svchost.exe was transfering small packets, 6/B, and I can't even understand why svchost or system require network connectivity, it appears to me as though those functions should be seperated by development coding.

    -can someone tell me what services I absolutely need to provide with internet connection in order to maintain network connectivity while using Windows Firewall?
    I'd rather not use a third party software program at this point.
      My Computer


  2. Posts : 471
    W7 Professional x64
       #2

    I'll tell ya what, I'll try to help ya on this one too. :)

    Okay, let's take this from the top. I'm gonna start simple. Firstly, are you running AV? If you're running an Antivirus program, and Windows Firewall, you should be good to go. I wouldn't worry about locking down your machine any more than that (i.e: I'd suggest getting rid of the Online Armor firewall).

    It sounds to me like the issue isn't your desktop, but your wireless connection. Do you have any other machines in your house that connect to the wireless? If not, I would try hard wiring your machine, and see if it works.

    SVCHost is a "shell" that contains a lot of running processes. It's why there's so many instances of it. I wouldn't worry about it connecting to the network.

    With your final question, are you asking this with the intent to shut off non-needed services? If so, what's your goal in doing that?

    I'm sorry I ask so many questions, but the more information I get from you, the easier it becomes to formulate an answer. :)
      My Computer


  3. Posts : 37
    7 home premium 64-bit
    Thread Starter
       #3

    ...


    the point of preventing services that don't need to network from doing so is to prevent exploitation. windows update has about 50 different updates that say, 'to prevent an intruder from gaining TOTAL control over your system'. your right, wireless is a security risk. it's a free flotaing dancer in pretty garb that doesn't realize her skirt is too long, she's gonna step on it and trip. this network has numerous computers connected to it, and this machine is not hard wired to the modem. In fact I don't think there is a machine connected to the modem at this point. I already know which services I can dissable from services, more or less. I've done so a hundred and two times without any issues, except telephony, it seems to pick and choose a time to tell windows it needs to be on. just want the maximum software safeguard for this computer. to me that means creating firewall rules that backup the disabling of services, and requiring authentication, integrity, and encryption when I'm connecting via wireless because we use wpa encryption. my assumption there is that services like homegroup, in and out connections, going through my connection to the router, should require security. i'm not positive on that, but it definately sounds like common sense to me.
      My Computer


  4. Posts : 471
    W7 Professional x64
       #4

    Well, I'm not sure how to help you, as I really can't bring myself to support the idea of axing services to increase security. I honestly think that, in the long run, you're going to do yourself more harm than good with this mentality. If this machine is purely a personal one, I would run AV and a Firewall on it, and take comfort in the fact that there isn't enough money in hacking individuals for anybody to bother (i.e: if you're good enough to crack individual security, you might as well take swings at banks, or something).
      My Computer


  5. Posts : 37
    7 home premium 64-bit
    Thread Starter
       #5

    a lot of the services only make sense on networks that are employing a lot of well organized protocols as it seems from the lay point of view. the most confusing one to think of as axing security is secure tunneling, does turning it off stop tunneling or just make the effect of being gophered less secure? that was rhetorical but feel free to answer it, because i just realized i don't know the answer.

    sorry for the delayed reply as well...got carried away with lmhosts post. thanks again mater.
      My Computer


  6. Posts : 471
    W7 Professional x64
       #6

    I don't know what you're usage of the word gophered means, nor precisely what services you shut off, so it's hard for me to say.

    Also, something else you should realize is that if someone really wants to hack you, they're just going to pick up the packets that travel over your wifi, and wait until they've enough of those to gather what information it is they need/want. I would suggest turning most/all of the axed services back on, and working on ensuring that your machine is a fortress (giving preference to secure connections over non-secure, things like that).
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 05:36.
Find Us