New with Windows Firewall?
Firewall is a built-in, host-based, stateful firewall that is included in
Windows Vista, Windows Server 2008, Windows XP with Service Pack 2 and
later, and Windows Server 2003 with Service Pack 1 and later. Windows
Firewall drops incoming traffic that does not correspond to either traffic
sent in response to a request of the computer (solicited traffic) or
unsolicited traffic that has been specified as allowed (excepted traffic).
Windows Firewall provides a level of protection from malicious users and
programs that rely on unsolicited incoming traffic to attack computers. In
Windows Vista and Windows Server 2008, Windows Firewall can also drop
Firewall with Advanced Security is a stateful, host-based firewall that
blocks incoming and outgoing connections based on its configuration.
While typical end-user configuration of Windows Firewall still takes
place through the Windows Firewall Control Panel tool, advanced
configuration now takes place in a Microsoft® Management Control (MMC)
snap-in named Windows Firewall with Advanced Security. The inclusion of
this snap-in not only provides an interface for configuring Windows
Firewall locally but also for configuring Windows Firewall on remote
computers and via Group Policy. Firewall functions are now integrated
with IPsec (Internet Protocol security) protection settings, reducing
the possibility of conflict between the two protection mechanisms.
Windows Firewall with Advanced Security supports separate profiles for
when computers are domain-joined or connected to a private or public
network. It also supports the creation of rules for enforcing server and
domain isolation policies. Windows Firewall with Advanced Security
supports more granular rules, including Microsoft Active Directory®
users and groups, source and destination Internet Protocol (IP)
addresses, IP port number, ICMP settings, IPsec settings, specific types
of interfaces, services, and more.