win7防火墙设置Win7 firewall settings
Win7 firewall settings:
1, we must first turn off the win7 automatic restore function.Automatic reduction called intelligent win7 reduction, becauseafter a restart when it is set to restore it. Turn off theautomatic reduction of operation is as follows: click Start -control panel - System - system protection, select the localdisk (C:) (system) -closed. One possible UAC, you need to enterthe administrator password.
2, start - enter CMD in the search programs and files in thebox, showing the presence of the cmd.exe program, right click-run as administrator identity, if you are the administrator,UAC prompts you to yes or no, if not the administrator, you needto enter the administrator password. Now at the command line.Run the secpol.msc, open the local security policy dialog box.Note the difference between win7 and Win XP
In Win XP, the administrator account must have administratorprivileges, they are consistent. But in win7, although theadministrator account, but still with ordinary accountidentity program. From CMD can also see if the administrator,it will display the administrator, if the general identity isnot displayed. But if you take a administrator account to runthe program, you are running with administrator privileges.This is the difference between administrator and otheradministrator account. In the win7 administrator is disabledby default.
3, navigate to the Windows firewall with advanced security.
Right click the Windows firewall with advanced security- lgpo- point attribute, open the properties dialog box. For homeusers, the general public domain, special, set to the same,actually if you only use a public network, you only need to setthe public profile tab. But for simple, we set it as consistent.Firewall status: enabled (recommended) ; inbound connections:block all connections; outbound connections: stop. We do notchoose the default settings, the default security settingsbelow us. For home users, if you choose inbound connections:stop all connections, then your computer cannot be server, willprevent eMule, KuGoo, and many other functions of the software,if you don' t want to be so strict, for example, you want to useremote desktop, set for the inbound links: (stop the default) .We do not use the default connection out of the station, stopusing.
We conducted a simple introduction to these two:
Inbound connections if the default value, then in accordancewith the rules of the inbound connection is allowed, if set toblock all connections, then any inbound connections areprohibited, even if it is not connected to conform to the rulesof the machine. So in such circumstances, can not use the remotedesktop. If set to allow outbound connections (default) , anyprogram can access the Internet, this is not what we want, weonly hope we allow programs to access the internet. A good pointto determine. If no accident, then any programat this time willnot be able to access the Internet. (if IE, indicating that ithas been added to the rules in the. We would not need IE accessrules. )
4 point, inbound and outbound rules can see the rules, thefollowing is empty. Because we are not allowed to access thenetwork program.
We do not need to set the rules into the station, because wehave stopped all connections, the design is useless. Thestation is that we need to set the rules, otherwise how can weuse the Internet? Right click outbound rules --- new rules -a dialog box, choose the program, the next step, enter thesystem of this procedure in the path of the next step, then setto allow connection, in the name of the input "to allow systemaccess network". You canmodify this rule we establish the ruleson the right side of the box. We do not need to be modified forsystem. Note that if you set the private network to network inthe Internet, you need special tick rather than the public.After this rule configuration is good, the rest is similar.We need to build three rules, to lay a good foundation for theinternet. The other two rules are as follows:
Name: DNS (1) allows programs and services; - thisprogram:%SystemRoot%\System32\svchost.exe; protocol and port-protocol type: UDP; local port: 1024-65535, remote port: 53;senior public.
(2) Name: allow back; procedures and service: all meet thespecified conditions and procedures; Protocol -protocol porttype: ICMPv4; senior public. And in front of that allow systemto access the network, a total of three.
5 point control panel ---windows f irewall ---windows advanced
settings, UAC control dialog box, asking you to confirm whetheror not to continue, if not the administrator requires you toenter the administrator password. Open the advanced windowssecurity firewall on the local computer, the inboundconnections, outbound connections, and we in the Group Policyunder the same setting, same. The three rule is set in frontof the US, this can not be changed. Group policy is set higherthan the setting. We have derived the rules here after save ina file for recovery.
IE set:
Point out of the station rule, a new rule is as follows:Name: "IE is allowed access to the Internet" programs andservices:%ProgramFi les%\Internet; Explorer\iexplore.exe;protocol and port, protocol type: TCP; 1024-65535; remote portlocal port: 80; senior public. The open IE, you can see, theinternet. The other is similar, so, only after we allow theprogram to access a network.
The setting of QQ:
Name: QQ is allowed access to the Internet; protocol and port- protocol type: UDP; remote port: 8000; senior public.If you QQ were set up as above will be landing in the port numberQQ landing interface named QQ. If you do not specify a remoteport number, do not have. If you're not sure for a program witharbitrary port number. Use the port number after some morestringent restrictions.
From our previous settings can be seen, only system is open.The svchost. exe port is open, and it only and remote port 53communication is essentially closed. Because the horse is notpossible with the remote port 53 communication
便宜的香港vps多少钱?现在国外VPS主机的价格已经很便宜了,美国VPS主机最低一个月只要十几元,但同样免备案的香港VPS价格贵不贵呢?或者说便宜的香港VPS多少钱?香港vps主机价格要比美国机房的贵一些,但比国内的又便宜不少,所以目前情况是同等配置下,美国VPS比香港的便宜,香港VPS比国内(指大陆地区)的便宜。目前,最便宜香港vps低至3元/首月、18元/月起,今天云服务器网(www.yunt...
atcloud主要提供常规cloud(VPS)和storage(大硬盘存储)系列VPS,其数据中心分布在美国(俄勒冈、弗吉尼亚)、加拿大、英国、法国、德国、新加坡,所有VPS默认提供480Gbps的超高DDoS防御+不限流量,杜绝DDoS攻击骚扰,比较适合海外建站等相关业务。ATCLOUD.NET是一家成立于2020年的海外主机商,主要提供KVM架构的VPS产品、LXC容器化产品、权威DNS智能解...
前几天还在和做外贸业务的网友聊着有哪些欧洲机房的云服务器、VPS商家值得选择的。其中介绍他选择的还是我们熟悉的Vultr VPS服务商,拥有比较多达到17个数据中心,这不今天在登录VULTR商家的时候看到消息又新增一个新的机房。这算是第18个数据中心,也是欧洲VPS主机,地区是瑞典斯德哥尔摩。如果我们有需要欧洲机房的朋友现在就可以看到开通的机房中有可以选择瑞典机房。目前欧洲已经有五个机房可以选择,...