Resource

How to track Internet Activity Using Windows Firewall

- by Fattain Naime - Leave a Comment

Windows Firewall is a firewall component of Microsoft Windows. It was first included in Windows XP and Windows Server 2003. Prior to the release of Windows XP Service Pack 2 in 2004, it was known as Internet Connection Firewall. Wikipedia

What is Windows Firewall

When Windows XP was originally shipped in October 2001, it included a limited firewall called “Internet Connection Firewall”. It was disabled by default due to concerns with backward compatibility, and the configuration screens were buried away in network configuration screens that many users never looked at. As a result, it was rarely used. In mid-2003, the Blaster worm attacked a large number of Windows machines, taking advantage of flaws in the RPC Windows service.n Several months later, the Sasser worm did something similar. The ongoing prevalence of these worms through 2004 resulted in unpatched machines being infected within a matter of minutes. Because of these incidents, as well as other criticisms that Microsoft was not being active in protecting customers from threats, Microsoft decided to significantly improve both the functionality and the interface of Windows XP’s built-in firewall, rebrand it as Windows Firewall, and switched it on by default since Windows XP SP2.

One of three profiles is activated automatically for each network interface:

  • Public assumes that the network is shared with the World and is the most restrictive profile.
  • Private assumes that the network is isolated from the Internet and allows more inbound connections than public. A network is never assumed to be private unless designated as such by a local administrator.
  • Domain profile is the least restrictive. It allows more inbound connections to allow for file sharing etc. The domain profile is selected automatically when connected to a network with a domain trusted by the local computer.

Security log capabilities are included, which can record IP addresses and other data relating to connections originating from the home or office network or the Internet. It can record both dropped packets and successful connections. This can be used, for instance, to track every time a computer on the network connects to a website. This security log is not enabled by default; the administrator must enable it.

Windows Firewall can be controlled/configured through a COM object-oriented API, scriptable through the netsh command, through the GUI administration tool, or centrally through group policies. All features are available regardless of how it is configured.

How to access Windows Firewall

Windows Vista

Windows Vista improved the firewall to address a number of concerns around the flexibility of Windows Firewall in a corporate environment:

  • The firewall is based on the Windows Filtering Platform.
  • A new management console snap-in named Windows Firewall with Advanced Security which provides access to many advanced options, and enables remote administration. This can be accessed via Start -> Control Panel -> Administrative Tools -> Windows Firewall with Advanced Security, or by running “wf.msc
  • Outbound packet filtering, reflecting increasing concerns about spyware and viruses that attempt to “phone home”. Outbound rules are configured using the management console. Notifications are not shown however for outbound connections.
  • With the advanced packet filter, rules can also be specified for source and destination IP addresses and port ranges.
  • Rules can be configured for services by its service name chosen by a list, without needing to specify the full path file name.
  • IPsec is fully integrated, allowing connections to be allowed or denied based on security certificates, Kerberos authentication, etc. Encryption can also be required for any kind of connection.
  • Improved interface for managing separate firewall profiles. Ability to have three separate firewall profiles for when computers are domain-joined, connected to a private network, or connected to a public network (XP SP2 supports two profiles—domain-joined and standard). Support for the creation of rules for enforcing server and domain isolation policies.

Windows 10

Changes to this component in Windows 10 are:

  • The change of name that occurred in the September 2017 update, known as the Fall Creators Update (codename Redstone 3).
  • Firewall service (mpssvc) cannot be stopped anymore.

Track Internet Activity Using Windows Firewall

Step 1: First of all, open Windows 10 search and type in ‘Firewall.’ Open the Windows Defender Firewall option.

firewall_search
Firewall Search

Step 2: On the next page, click on the ‘Advanced Settings’ option.

Related Posts

Do you really need a dedicated GPU in 2024?

5 Easy Ways To Make Money Online In 2024

6 reasons AMD is better than Intel for the average gamer

About Fattain Naime

Hi, my name is Fattain Naime and I am a computer engineer and young entrepreneur. After graduating, I decided to follow my passion and start my own company, Builder Hall Pvt. Ltd. I am dedicated to using my technical skills and entrepreneurial spirit to create innovative solutions for my clients.Throughout my academic and professional career, I have developed a strong foundation in computer engineering principles, including programming languages, data structures, and algorithms. I have also gained experience in project management and business development, which has allowed me to successfully lead my own company.Since founding Builder Hall, I have worked tirelessly to build a team of talented professionals and bring cutting-edge technology solutions to the market. Our focus is on providing our clients with the best possible experience and helping them to achieve their business goals through the use of technology.In my role as CEO, I have been responsible for leading the company's strategy and overseeing all aspects of operations. I am constantly seeking out new opportunities for growth and expansion, and I am committed to building a culture of excellence within the company.Outside of work, I am an avid reader and enjoy staying up-to-date on the latest developments in the tech industry. I also enjoy spending time with my family and staying active through sports and fitness activities.If you're looking for a dynamic, driven computer engineer with a passion for entrepreneurship, don't hesitate to reach out and connect with me on LinkedIn. I'm always open to discussing new opportunities and ideas. Make the world easier.I am excited to share my skills and experience with others, and I hope to connect with like-minded individuals who are passionate about technology and entrepreneurship. Thank you for visiting my profile.

View all posts by Fattain Naime →

Leave a Reply

Your email address will not be published. Required fields are marked *