Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: does the firewall download the rules set via update


10 May 2010   #1

windows 7 ultimate 64bit
 
 
does the firewall download the rules set via update

Hi
i have Windows 7 32bit

i would love to ask a question about the firewall

does it download rules set (made by microsoft to be more fase) via update module?

thanks


My System SpecsSystem Spec
.

10 May 2010   #2

Windows 7 Professional 64-bit
 
 

Hi drugo - I am not exactly clear on what you are asking here. But, here is a resource with some FAQs about firewalls in Windows 7 Firewall: frequently asked questions.

Please let me know if this helps at all. What do you mean by "Does it download rules set (made by microsoft to be more fase) via update module?"

Cheers,
Cassandra
Microsoft Windows Outreach
My System SpecsSystem Spec
10 May 2010   #3

Windows Home Premium (64)
 
 

I think that drugo was wondering where Windows Firewall gets is Rules from (similar to Norton Internet Security using LiveUpdate).

As I understand it, Windows Firewall is essentially hard-coded with fixed rules, configurable only by the user allowing/not allowing programs to access the Internet.
My System SpecsSystem Spec
.


10 May 2010   #4

Windows 7 x64 pro/ Windows 7 x86 Pro/ XP SP3 x86
 
 

The windows firewall does not patch or update regularly like antivirus apps do or 3rd party firewalls like Mcaffee etc. do. The reason has to do with the difference in the way windows firewall operates. Windows firewall is only meant to keep things OUT. It protects your computer by refusing incoming data packets that have not been requested. There is no outbound filtering or any additional features such as virus protection. For most people who maintain their system in other ways, this is MORE than sufficient.

OTOH, if you want to know when one of your applications is trying to obtain access to the outside world so you can stop it, then you will have to install a third-party firewall and configure/maintain it. In addition many 3rd party firewalls have application integrity monitoring, some have advanced features such as spyware protection and virus protection. Because of such features, such firewalls need to update regularly.
My System SpecsSystem Spec
10 May 2010   #5

Windows XP - Now Windows 7 Home Premium (64-bit).
 
 

Agreed. Windows firewall does not update its set of rules -- implementation of which is at the discretion of the user if I understand correctly. In other words, it's configurable but by the user and not from/by Windows Update.
My System SpecsSystem Spec
10 May 2010   #6

windows 7 ultimate 64bit
 
 

Quote   Quote: Originally Posted by Bill2 View Post
The windows firewall does not patch or update regularly like antivirus apps do or 3rd party firewalls like Mcaffee etc. do. The reason has to do with the difference in the way windows firewall operates. Windows firewall is only meant to keep things OUT. It protects your computer by refusing incoming data packets that have not been requested. There is no outbound filtering or any additional features such as virus protection. For most people who maintain their system in other ways, this is MORE than sufficient.

OTOH, if you want to know when one of your applications is trying to obtain access to the outside world so you can stop it, then you will have to install a third-party firewall and configure/maintain it. In addition many 3rd party firewalls have application integrity monitoring, some have advanced features such as spyware protection and virus protection. Because of such features, such firewalls need to update regularly.
Quote   Quote: Originally Posted by manhunter2826 View Post
Agreed. Windows firewall does not update its set of rules -- implementation of which is at the discretion of the user if I understand correctly. In other words, it's configurable but by the user and not from/by Windows Update.
thanks!
i thouhgt Windows 7 could download ruleset for the firewall
My System SpecsSystem Spec
10 May 2010   #7

Windows XP - Now Windows 7 Home Premium (64-bit).
 
 

^I am pretty sure that's not the case drugo.

This is quite a nice read about the new features in Windows 7 Firewall.
What's new in the Windows 7 Firewall?
My System SpecsSystem Spec
11 May 2010   #8

Windows 7 Home Premium x32 SP1
 
 

Quote   Quote: Originally Posted by drugo View Post
Hi
i have Windows 7 32bit

i would love to ask a question about the firewall

does it download rules set (made by microsoft to be more fase) via update module?

thanks
I doubt in that since Windows built-in firewall creates rules with a very broad range - in case to avoid any conflicts by user side.
For example, you have installed torrent software (uTorrent), in uTorrent settings you have set "port used for incoming connections" eg. 43210 port (or other random port). But Windows Firewall rule looks like this (screen shot)
does the firewall download the rules set via update-win_fw_7.png

- it opens All Ports.

So Windows Firewall opens full port range for applications even if in using is only one port for security reasons.
Of course you can (you should) manually edit this settings, but you should do this for all application (if you know what port each application using).. it's a lot of work because by default Windows Firewall set up that and don't ask you about it.

For instance in case of other software firewall Look 'n' Stop it will be in that order:
1. You installing uTorrent
2. You starting uTorrent application [FW ask you about Internet connection by this application, you can allow/block this event with "remember my decision" box)
3. Now you configure uTorrent (set up port 43210 for incoming connections in uTorrent)
4. You try to download a file using uTorrent - uTorrent shows you yellow flag
5. You look at Firewall (Look 'n' Stop) logs tab and you see that connection on port 43210 are blocked by firewall
6. So... you have to create rule where your computer act as server and where you allow for incoming/outgoing connections on port 43210 on your machine (screen - please note that in this case port used was 64392: http://www.wilderssecurity.com/attac...1&d=1271255989 ).
7. For security reasons you can also select application for this rule - so when uTorrent will be disabled this rule will be also disabled, but when you start uTorrent application rule will be enabled until you close uTorrent.

As you can see the 3rd party software firewall rule based like Look 'n' Stop gives you much more control and security. Of course there are other software firewalls on the market, called "application based firewalls" (they are much more easier for novice users or users they are not much know about networking) and all steps above are done automatically by 'inteligent' firewall, so this is up to you what kind of firewall you will chose.

HTH,
Creer


My System SpecsSystem Spec
11 May 2010   #9

Windows Home Premium (64)
 
 

That's good to know, Creer.

One question though - why not set the (local?) port number in the Window Firewall window?
My System SpecsSystem Spec
11 May 2010   #10

Windows 7 Home Premium x32 SP1
 
 

Quote   Quote: Originally Posted by DarkStar GT View Post
That's good to know, Creer.

One question though - why not set the (local?) port number in the Window Firewall window?
Yes, you should do that, but since you install and first run eg. uTorrent, you get only one simple notification from Windows 7 FW:
Name:  win_fw_7_utorr.png
Views: 4
Size:  30.1 KB

When you ticked Private networks or/and Public networks and clik Allow access button then automatically Windows create two separate rules for TCP and UDP connections:
http://www.sevenforums.com/attachmen...e-win_fw_7.png

If you don't edit these rules it will be as it is - for All Ports.
Please keep in mind that these rules are only active when uTorrent is started:
Name:  win7_utorrent.png
Views: 4
Size:  49.1 KB
So it's not fully secure since you don't need to have open all full range of ports for incoming connections during uTorrent activity.


BTW. check if you have rules in Windows 7 firewall for your browsers like Firefox, Opera or IE in Outbound tab.


My System SpecsSystem Spec
Reply

 does the firewall download the rules set via update




Thread Tools



Similar help and support threads for2: does the firewall download the rules set via update
Thread Forum
Solved Any way to re-load original, default Windows 7 Firewall Rules...? Network & Sharing
Solved windows firewall rules System Security
How to write a new rules in windows firewall System Security
Preventing installers from creating firewall rules System Security
Windows 7 default firewall rules System Security
Firewall configuration rules for Win 7 FW? System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 12:50 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33