When I try to change the stealth ports setting from:
“Define a new trusted network – stealth my ports to everyone else”
To
“Block all incoming connections – stealth my ports to everyone else”
and then click on finish a box appears confirming that the firewall has been configured accordingly. However, when I check the setting has not changed.
Hi Kesher,try manually removing all the Global Rules and then Run the “Stealth Ports Wizard” and see what happens.
Dont forget to Apply after removing the rules.
Matty
You must click Next and select the network you want to trust
Thanks, How do I manually start removing the Global Rules? Apart from allowing me to change the configuration, what effect will this have?
Firewall/Advanced/Network Security Policy/Global Rules.
Right click on each rule then choose “Remove”
Do this with each rule and then “Apply” to close Window.Open Global Rules again to make sure it is now empty.
Now run the "Stealth Ports Wizard"not forgeting to click “Next” go back to Global Rules and see whats there.
The effect this will have on your system varies depending on say if your behind a router or not etc,some people have no Global Rules and just use Application Rules,Global Rules are the first analysis of incoming traffic.
Cheers Matty
After removing the Gobal Rules, then re-opening to check if the rules were still there I found that they were still not there.
However, on changing the ports configuration I found that the global rules had returned, also on rechecking the ports wizard I found that the configuration had returned to its previous setting.
The stealth port wizard doesn’t show the current configuration, just the actions you can take. The only one that is repetitive is the trusting of networks; the others are one time actions that make global rules for you. So the one you might use again is selected, even if you have previously done something else. Confusing though. 
If you dont do the “define a new trusted network” step and then choose what network you want to trust(from the dropdown list) you will have four Global Rules ending with a block and log.
Cheers Matty
Apparently I had read your question backward :-[ (Perhaps the incorrect “else” in the second option confused me)
“Define a new trusted network” creates 2 rules at the top of Global rules:
“Allow All Outgoing Request If The target Is in [The zone you selected]”
“Allow All Outgoing Request If The target Is in [The zone you selected]”
“Block all Incoming connections” creates the following rules:
Allow IP Out From IP Any To IP Any where Protocol is Any
Allow ICMP In From IP Any To IP Any Where ICMP message is Fragmentation Needed
Allow ICMP In From IP Any To IP Any Where ICMP message is Time Exceeded
Block and Log IP In From IP Any to IP Any Where Protocol is Any
“Block all Incoming connections” only replaces the rule created by “Alert me to incoming connections”. It doesn’t affect the rules created by “Define a new trusted zone” neither the rules created by the user.
What are your current global rules?
EDIT: If your rules did not change after selecting “Block all incoming connections” the most likely reason is that you were already using that mode. “Define a new trusted zone” is always selected when you open the Stealth wizard because it’s the first option, not because it’s the mode in use.
My current Global Rules are:
[b]Allow IP Out From IP Any To IP Any where Protocol is Any
Allow ICMP In From IP Any To IP Any Where ICMP message is Fragmentation Needed
Allow ICMP In From IP Any To IP Any Where ICMP message is Time Exceeded
Block and Log IP In From IP Any to IP Any Where Protocol is Any[/b]
Those are my exact setting also.