防火墙是一种软件或硬件,用于检查来自Internet或网络的信息,然后根据您的防火墙设置阻止或允许它通过您的计算机。防火墙可以帮助防止黑客或恶意软件通过网络或Internet(Internet)访问您的 Windows 11/10/8/7 计算机。防火墙还可以帮助阻止您的计算机向其他计算机发送恶意软件。
配置 Windows 防火墙
您可以通过控制面板中(Control Panel)防火墙(Firewall)小程序的左窗格自定义Windows 防火墙(Windows Firewall)的大多数设置。
1.打开Windows防火墙
默认选择此设置。当Windows 防火墙(Windows Firewall)打开时,大多数程序都被阻止通过防火墙进行通信。单击打开或关闭防火墙(Turn Firewall On or Off)将允许您启用或禁用计算机上的Windows 防火墙(Windows Firewall)。
2.阻止(Block)所有传入的防火墙连接,包括允许程序列表中的连接
此设置阻止所有未经请求的连接到您的计算机的尝试。当您需要为您的计算机提供最大程度的保护时使用此设置,例如当您连接到酒店或机场的公共网络时,或者当计算机蠕虫在Internet上传播时。使用此设置,当Windows 防火墙(Windows Firewall)阻止程序并且允许程序列表中的程序被忽略时,您不会收到通知。当您阻止所有传入连接时,您仍然可以查看大多数网页、发送和接收电子邮件以及发送和接收即时消息。
3.关闭Windows防火墙
(Avoid)除非您的计算机上运行了另一个防火墙,否则请避免使用此设置。关闭Windows 防火墙(Windows Firewall)可能会使您的计算机更容易受到黑客和恶意软件的破坏。单击打开或关闭防火墙(Turn Firewall On or Off)将允许您启用或禁用计算机上的Windows 防火墙(Windows Firewall)。
4. 阻止(Block)或允许程序(Allow Programs)通过Windows 防火墙(Windows Firewall)
默认情况下,大多数程序都会被Windows 防火墙(Windows Firewall)阻止,以帮助您提高计算机的安全性。为了正常工作,某些程序可能需要您允许它们通过防火墙进行通信。以下是如何做到这一点:
单击允许应用程序或功能通过 Windows 防火墙(Allow an app or feature through Windows Firewall)。如果系统提示您输入管理员密码或确认,请键入密码或提供确认。
选中要允许的程序旁边的复选框,选择要允许通信的网络位置类型,然后单击“确定”。
如果要允许程序通过防火墙进行通信,可以将其添加到允许程序列表中。例如,在将即时消息程序添加到允许程序列表之前,您可能无法在即时消息中发送照片。要在列表中添加或删除程序,请单击 允许应用程序或功能通过 Windows 防火墙(Allow an app or feature through Windows Firewall)链接以打开以下面板,您将能够在其中获取有关允许程序的更多详细信息并允许其他应用程序通过防火墙进行通信。
阅读:(Read:) Windows 防火墙已阻止此应用程序的某些功能。
5.如何在Windows防火墙中打开一个端口(Windows Firewall)
您还可以在 Windows 防火墙中阻止或打开端口(block or open a Port in Windows Firewall)。如果Windows 防火墙正在阻止某个程序,并且您希望允许该程序通过防火墙进行通信,您通常可以通过在(Windows Firewall)Windows 防火墙(Windows Firewall)的允许程序列表(也称为例外列表)中选择该程序来实现。要了解如何执行此操作,请参阅允许程序通过Windows 防火墙(Windows Firewall)进行通信。
但是,如果未列出该程序,您可能需要打开一个端口。例如,要与朋友在线玩多人游戏,您可能需要为游戏打开一个端口,以便防火墙允许游戏信息到达您的计算机。端口始终保持打开状态,因此请务必关闭不再需要的端口。
单击(Click)以打开Windows 防火墙(Windows Firewall)。在左侧窗格中,单击高级设置( Advanced settings)。
在“高级安全(Advanced Security)Windows 防火墙(Windows Firewall)”对话框的左窗格中,单击入站规则(Inbound Rules),然后在右窗格中单击新建规则(New Rule)。
接下来,按照屏幕上的说明得出合乎逻辑的结论。
管理 Windows 防火墙
Windows 10 允许您通过其(Windows)控制面板(Control Panel)访问高级设置,包括对出站连接的过滤配置。Windows为您提供三种选择——
默认情况下,Windows 10/8/7 防火墙会阻止与不在允许程序列表中的程序的连接。对于所有网络类型,它现在允许您分别配置每种网络类型的设置。这就是所谓的多活动防火墙配置文件(Multiple Active Firewall Profiles)。
大多数人只是希望将Windows防火墙设置为默认值而忘记它。默认设置已经足够好了。想要对其进行微调的人可以通过以下方式管理Windows防火墙:(Windows)
1) Windows 防火墙控制面板(Windows Firewall Control Panel)应用程序。
这是最简单的一种,对于日常任务来说已经足够了。
它是最简单的——也是最没有能力的。但有了它,你可以完成日常任务,例如允许程序通过它或阻止所有传入连接。此Technet链接将帮助您入门。
2) Windows 防火墙 - 高级安全(Windows Firewall – Advanced Security)。
这是一个用于Microsoft 管理控制台(Microsoft Management Console)的管理单元和预定义控制台,可对规则、例外和配置文件进行更精细的控制。您也可以通过控制(Control)面板应用程序访问它。
3) Netsh 实用程序
Netsh 实用程序(Netsh utility)(The Netsh utility),特别是其防火墙和(Firewall)Advfirewall上下文(Advfirewall),允许您从命令提示符(Command Prompt)窗口或批处理程序进行防火墙设置。
阅读(Read):如何通过 Windows 防火墙允许 Ping(ICMP Echo 请求)(allow Pings (ICMP Echo requests) through Windows Firewall)。
4) 组策略对象编辑器
这包含了具有高级安全性的(Advanced Security)Windows 防火墙(Windows Firewall)管理单元,位于:
Computer Configuration\Windows Settings\ Security Settings\Windows Firewall With Advanced Security.
此外,可以使用许多策略管理Windows 防火墙(Windows Firewall),这些策略可以在以下位置找到:
Computer Configuration \ Administrative Templates \ Network \ Network Connections \ Windows Firewall.
顺便说一句,可以通过组策略编辑器(Group Policy Editor)(gpedit.msc) 配置几乎总共 0f 超过 3000 个设置。但是,Windows Home Edition中不包含组安全策略(Group Security Policy)。
您还可以使用这些免费的在线防火墙测试来测试您的防火墙(Firewall)。
这些免费软件将帮助您更好地管理 Windows 防火墙(These freeware will help you manage the Windows Firewall better):
- Windows 防火墙控制
- Windows 防火墙通知程序
- 管理 Windows 防火墙。
如果您需要修复 Windows 防火墙,请参阅此帖子。
How to configure Windows Firewall in Windows 11/10
A firewall is а software or hardware that checks information coming from the Internet or a network, and then either blocks it or allows it to pass through to your comрutеr, depending on your firewall sеttings. A firewall can hеlp prevent hackers or malicious software from gaining access to your Windows 11/10/8/7 computer through а network or the Іnternеt. A firewall can also hеlp stop your computer from sending malіcious software to other computers.
Configure Windows Firewall
You can customize most settings of your Windows Firewall through the left pane of the Firewall applet in Control Panel.
1. Turn on Windows Firewall
This setting is selected by default. When Windows Firewall is On, most programs are blocked from communicating through the firewall. Clicking on the Turn Firewall On or Off will let you enable or disable the Windows Firewall on your computer.
2. Block all incoming firewall connections, including those in the list of allowed programs
This setting blocks all unsolicited attempts to connect to your computer. Use this setting when you need maximum protection for your computer, such as when you connect to a public network in a hotel or airport, or when a computer worm is spreading over the Internet. With this setting, you are not notified when Windows Firewall blocks programs, and programs in the list of allowed programs are ignored. When you block all incoming connections, you can still view most web pages, send and receive an e-mail, and send and receive instant messages.
3. Turn off Windows Firewall
Avoid using this setting unless you have another firewall running on your computer. Turning off Windows Firewall might make your computer more vulnerable to damage from hackers and malicious software. Clicking on the Turn Firewall On or Off will let you enable or disable the Windows Firewall on your computer.
4. Block or Allow Programs through the Windows Firewall
By default, most programs are blocked by Windows Firewall to help make your computer more secure. To work properly, some programs might require you to allow them to communicate through the firewall. Here’s how to do that:
Click Allow an app or feature through Windows Firewall. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
Select the check box next to the program you want to allow, select the network location types you want to allow communication on, and then click OK.
If you want to allow a program to communicate through the firewall, you can add it to the list of allowed programs. For example, you might not be able to send photos in an instant message until you add the instant messaging program to the list of allowed programs. To add or remove a program to the list, click on the Allow an app or feature through Windows Firewall link to open the following panel, where you will be able to get more details about allowed programs and allow another app to communicate through the firewall.
Read: Windows Firewall has blocked some features of this app.
5. How to open a port in Windows Firewall
You can also block or open a Port in Windows Firewall. If Windows Firewall is blocking a program and you want to allow that program to communicate through the firewall, you can usually do that by selecting the program in the list of allowed programs (also called the exceptions list) in the Windows Firewall. To learn how to do this, see Allow a program to communicate through Windows Firewall.
However, if the program isn’t listed, you might need to open a port. For example, to play a multiplayer game with friends online, you might need to open a port for the game so that the firewall allows the game information to reach your computer. A port stays open all the time, so be sure to close ports that you don’t need anymore.
Click to open Windows Firewall. In the left pane, click Advanced settings.
In the Windows Firewall with Advanced Security dialog box, in the left pane, click Inbound Rules, and then, in the right pane, click New Rule.
Next, follow the instructions on your screen to its logical conclusion.
Manage Windows Firewall
Windows 10 allows you to access the advanced settings, including the configuration of filtering for outbound connections, through its Control Panel. Windows gives you three choices-
- Public network,
- Home network
- Work network.
By default the Windows 10/8/7 firewall blocks connections to programs that are not on the list of allowed programs. With all network types, it now allows you to configure the settings for each network type separately. This is what is referred to as Multiple Active Firewall Profiles.
Most would just prefer to have the Windows firewall set to its default and forget about it. The default settings are good enough. Those who want to fine-tune it can manage the Windows firewall in the following ways:
1) Windows Firewall Control Panel application.
This is the simplest one and good enough for routine tasks.
It is the simplest—and the least capable. But with it, you can complete routine tasks, such as allowing a program through it or blocking all incoming connections. This Technet link true will help you get started.
2) Windows Firewall – Advanced Security.
This one is a snap-in and predefined console for Microsoft Management Console offers much more granular control over rules, exceptions, and profiles. You can access it through the Control panel app too.
3) The Netsh utility
The Netsh utility, in particular its Firewall and Advfirewall context, lets you make firewall settings from a Command Prompt window or a batch program.
Read: How to allow Pings (ICMP Echo requests) through Windows Firewall.
4) Group Policy Object Editor
This incorporates the Windows Firewall With Advanced Security snap-in under:
Computer Configuration\Windows Settings\ Security Settings\Windows Firewall With Advanced Security.
In addition, Windows Firewall can be managed with a number of policies, which can be found in:
Computer Configuration \ Administrative Templates \ Network \ Network Connections \ Windows Firewall.
Incidentally, nearly a total 0f over 3000 settings can be configured through Group Policy Editor (gpedit.msc). However, Group Security Policy is not included in Windows Home Edition.
You can also test your Firewall using these free online Firewall tests.
These freeware will help you manage the Windows Firewall better:
- Windows Firewall Control
- Windows Firewall Notifier
- Manage Windows Firewall.
See this post if you ever need to repair the Windows firewall.