Information Technology Reference
In-Depth Information
Public Profile
On the Public Profile tab, you have the ability to turn the firewall on
or off by using the Firewall State drop-down menu. When setting the Firewall State in
this tab, it's for turning the firewall on or off for the Public Profile only. When turning the
firewall on, you also have the ability to block inbound and outbound connections
(see Figure 7.10). Administrators also have the ability to control the Windows Firewall
Public Profile behavior along with setting up logging.
figure 7.10
Public Profile tab of Windows Firewall
IPsec Settings Tab
The IPsec Setting tab allows you to set up the IPsec defaults, IPsec
exemptions, and IPsec tunnel authorization. The IPsec defaults button allows you to specify
settings used by IPsec to establish secured connections. The IPsec exemptions allow you
to set up ICMP exemptions from IPsec. Finally, you can set up IPsec tunnel authorization,
which allows you to specify the users and computers that are authorized to establish an
IPsec tunnel (see Figure 7.11).
Windows Server 2012 R2 takes firewalls a step further than just the normal firewall
settings in Control Panel. An MMC snap-in called
Windows Firewall with Advanced
Security
(see Figure 7.12) can block all incoming and outgoing connections based on its
configuration.
One of the major advantages to using the Windows Firewall with Advanced Security
snap-in is the ability to set firewall configurations on remote computers using group
policies. Another advantage to using this MMC is the ability to set up firewalls using
IPsec security. Windows Firewall with Advanced Security snap-in allows an administrator
to set more in-depth rules for Microsoft Active Directory users and groups, source and
destination Internet Protocol (IP) addresses, IP port numbers, ICMP settings, IPsec
settings, specific types of interfaces, and services.
Search WWH ::
Custom Search