Windows 7 / Networking

---

Allowing Programs Through Windows Firewall

Windows Firewall allows you to configure exceptions based on programs. This differs from Windows Vista where Windows Firewall would allow you to configure exceptions based on port address. You can still create rules based on port address; you just have to do it using WFAS, covered later in this lesson. You can also allow specific Windows 7 features, such as Windows Virtual PC, through Windows Firewall. Feature rules become available when you enable the feature using the Programs And Features item in Control Panel. To add a rule for a feature or program, click Allow A Program Or Feature Through Windows Firewall item in the Windows Firewall section of Control Panel. The dialog box shows a list of currently installed features and any programs for which rules have been created as well as the profiles for which rules concerning those programs and features are enabled.

To modify the settings on this page, you need to click the Change Settings item. Only users that are members of the local Administrators group, or who have been delegated the appropriate privileges are able to modify Windows Firewall settings. If a program that you want to create a rule for is not present on this list, click Allow Another Program. This opens the Add A Program dialog box. If the program that you want to create a rule for is not listed, click Browse to add it. Use the Network Location Types button to specify the network profiles in which the rule should be active.

Note You can reset Windows Firewall and WFAS to their out-of-the-box configuration by running the command netsh advfirewall reset from an elevated command prompt. You can also reset Windows Firewall and WFAS by clicking on Restore Defaults in the Windows Firewall control panel.