Xp firewall

[Ike0069]

How do I turn on (or off) the Firewall built into XP? I was told that is defaulted to off, so I want to turn it on. Also, is this firewall anygood, or is it a waste of time to use it?
Thanks

 

[geologist]

my network places, local area connection, properties, click the advanced tab. THere you can turn it on and off.

I have heard that ZoneAlarm is better, and I think it is free.

Note that in XP SP2 the default is ON.

 

[Ike0069]

Thanks. I don't know much about firewalls. If it is enabled, do I need to do anything special to play games over the net?

 

[mechBgon]

If you don't have a hardware firewall but you do have a broadband connection (cable, DSL, etc), consider getting a router. They're really affordable and they make a good first line of defense against the Internet too. Here's one I got for my little sister: $42 Netgear ($10 rebate even ). With a hardware firewall, you would open the ports needed for your particular game (a quick Google search for "UT2004 firewall ports" would tell you which ports to open, namely 7777 and 7778).

For her, I enabled the WinXP firewall and installed ZoneAlarm free version as well. ZoneAlarm will watch traffic both inbound and outbound, and will stop new programs from reaching the Internet until you grant each new program for that permission. That can be a useful tip that hey, something has sneaked onto my computer :Q

 

[Ike0069]

Thanks mechBgon.
Please excuse my ignorance, but I'm not too familar with any of this. I'm new to DSL and am just starting to learn. What exactly does the router do for me? I am thinking about buying my kids a computer and networkning them. I would need a router for that anyways, right? ANY info you guys can give is extremely appreciated.

 

[mechBgon]

The router acts as a middleman between your DSL modem and your computer(s). To make a long story short, it will let you run up to 253 computers on your single connection, and unless you specifically set it to reply to probes from computers on the Internet, it will just ignore them and throw away inbound data traffic that none of your computers asked for.

The Netgear I linked to also can filter for words in website addresses. For example, you could block all sites containing the word "micro" and it would block www.microsoft.com, www.micron.com, etc. It can also cut off Internet access to all computers on a schedule you set, so your kids cannot get onto the Internet until, say, 6PM when you're home from work.

The router's firewall capabilities deflect intentional hacker probes, and prevent worm-infected computers from infecting your computers with worms as long as the infected computers are on the Internet. If one computer in your own household gets infected with a worm, however, the threat is "inside" the firewall and now it comes down to whether each individual computer can stave off the attack from its stablemate. To stave off an "inside job," some or all of these would be good:

1) a separate software firewall on each computer, set up to block traffic from the other computers (ZoneAlarm with Trusted Zone security set to High, for example)

2) a fully-patched Windows installation

3) a strong password for all the computer's user accounts, most especially the Administrator-class ones

4) properly-configured antivirus software with up-to-date antivirus definitions, and set up to deal with threats silently, not to come asking you what it should do

5) an Athlon64 CPU with WinXP SP2, which is inherently immune to buffer-overflow attacks


If your kids' computers have Win2000Pro or WinXP Pro, then it would be prudent to set them up as Restricted Users so they can't install software, especially spyware/adware.

There are some more tips and links on security if you click the bottom link in my signature and go to the Resources page. The Microsoft Baseline Security Analyzer is a good one to run since it goes beyond what Windows Update checks on (weak/blank passwords, etc).

 

[Ike0069]

That is a huge help. I think I'm gonna go ahead and order that router. I need to get a new wireless mouse also, and I was buying it from newegg anyways. Thanks again!