Learn how to configure Windows Firewall for the three network types: Domain, Private, and Public (or Guest). Enable and disable the Windows Firewall and monitor its status. Learn what Block All Incoming Connections does to protect your computer. Allow a connection through Windows Firewall. Restore default firewall settings.
- [Instructor] If you use a laptop, and work in multiple locations, or if you travel a lot with that laptop, you'll likely connect to a lot of networks. Some of those networks are private, like a network at home or work, while some are public, like those in hotels and coffee shops. You can open Windows Firewall to see what type of network you're connected to now. Just type firewall at the Task Bar, and select Windows Firewall in the result. See if your network is private or public.
If it isn't either of those, you're connected to a domain. Domain networks are available in larger corporations and enterprises, and are managed by network administrators. Here, I'm connected to a private network. You can see that my firewall is turned off though. If you're in charge of managing your own firewall, and see that the firewall is turned off, you should look into why. It may be because you installed a third party firewall, but it could be because malware has infiltrated the system. To change this, click Turn Windows Firewall on or off, in the left pane, and opt to turn on Windows Firewall.
When I click OK, the firewall will be turned on. Remember though, only change the firewall status if you know it should be on, but it isn't. If you're part of a domain, your firewall will be managed by a network administrator, and it's likely you couldn't turn it on, even if you tried. Also, if your system is infiltrated with malware, you might try to turn it on, but won't be able to. In this case, you'll need to get rid of the malware first, and return here later. As a side note, it's not a good practice to run multiple firewalls either, even if you feel like it's a better idea.
Each firewall has specific settings configured by default. To see how the firewall is configured for your computer, for each of the network types, click Network and Sharing Center at the bottom of the window. Then click Change advanced sharing settings. Here Private is expanded, and you can see that Network discovery, and File and printer sharing is enabled. If I expand Guest, you can see that those two settings are disabled.
Although you may be able to make changes here, understand that it's not in your best interests to do so. It's better to allow specific connections as I need til next, when problems or issues arise, versus making blanket changes to the entire firewall profile. For now, if you're following along, click Cancel, and then click the back arrow to return to the Windows Firewall window. Continuing on, note that a firewall, by design, blocks undesirable and risky connections. One example is Remote Desktop.
Remote Desktop isn't set up to pass data through the firewall. It's disabled because this opens the system to allow remote users in, who have the required credentials, and permissions. If you want to use Remote Desktop though, perhaps to access your work computer from home, you'll have to create an exception in the Windows Firewall to allow it. To do this, click Allow an app or feature through Windows Firewall. Click Change settings, and scroll down and locate Remote Desktop.
Click to put a check next to Remote Desktop, and notice that there's also a check under Private. You probably don't want to put a check under Public. When you're ready, click OK. If you decide at any point to revoke access, repeat these steps to disable this service. Finally, if you're feeling exceptionally vulnerable, and feel you are susceptible to outside attacks, you can block all incoming connections. Doing so won't cause you to lose access to the Internet, or be unable to send or receive e mail.
But Windows will reject all uninvited, incoming traffic. It will still allow what's referred to as solicited data transfers though, such as those you make through applications installed on your computer, like Web browsers, and e mail programs. To block unsolicited data transfers, click Turn Windows Firewall on or off, and then place a check in Block all incoming connections, including those in the list of allowed apps.
When you're ready, click OK. If you made changes here, while following along with me, it might be best to restore the default settings before continuing. To do this, simply click Restore defaults. Go ahead and spend a few more minutes exploring the other options on the left side of this window, if you have time. Know you can click Troubleshoot my network, and you can click Advanced settings to see even more options for working with the firewall. You'll learn about these advanced settings in the movie following this one.
This course maps to the domain of Exam 70-698, Installing and Configuring Windows 10, a required exam for Microsoft Certified Solutions Associate (MCSA).
- Configuring and supporting network settings
- Connecting to a network and configuring network locations
- Using Windows Firewall
- Managing partitions with Disk Management
- Managing storage with PowerShell
- Creating and configuring a VHD
- Creating and configuring homegroups and folder shares
- Configuring desktop apps and startup options
- Creating and deploying provisioning packages
- Using Remote Management tools
- Configuring Remote Assistance and Remote Desktop