Network Security

Applies To: Windows Server 2008 R2, Windows Server 2012

In the Network Security section of the Security Configuration Wizard (SCW), you can add, remove, or edit rules concerning Windows Firewall with Advanced Security.

Windows Firewall with Advanced Security

Windows Firewall with Advanced Security combines a host firewall and Internet Protocol security (IPsec). Unlike a perimeter firewall, Windows Firewall with Advanced Security runs on each computer running Windows Server 2008 R2 or Windows Server 2008 and helps provide local protection from network attacks that might pass through your perimeter network or originate inside your organization. It also helps secure computer-to-computer connections by allowing you to require authentication and data protection for communications.

Windows Firewall with Advanced Security is a stateful firewall and inspects and filters all packets for IP version 4 (IPv4) and IP version 6 (IPv6) traffic. By default, incoming traffic is blocked unless it is a response to a request by the host (solicited traffic) or it is specifically allowed (that is, a firewall rule has been created to allow the traffic). You can explicitly allow traffic by specifying a port number, application name, service name, or other criteria by configuring Windows Firewall with Advanced Security settings.

SCW provides support for the new Windows Firewall with Advanced Security but IPsec configuration is not possible through SCW.

Note

Incorrectly configuring Windows Firewall can impair the functionality of services by blocking inbound traffic to services on the computer.

Additional references