I was looking at the tutorial for how to configure the firewall for maximum security and usability and changed stealth port settings to blocked all incoming connections. This is causing the firewall to block windows operating system but doesn’t seem to be causing any problems as far as I know. All the source and destination ip addresses belong to my network devices. I don’t use any p2p applications but was wondering if this would prevent windows updates (which I have set to install automatically) or any other updates for my network devices from installing. Also how will this affect communication between my network devices? I changed my settings as recommended in the tutorial for maximum security but just not sure about the usability of it. I have never used any other firewall except windows firewall until now so I would really appreciate any feedback. Thanks.
Windows updates should work fine the same goes for the other updates. The only issue with this setting is P2P connections from what I know.
That’s what I was thinking but wasn’t sure. Thank you so much for replying to me.
Blocking all incoming connections without making exceptions might create issues with connectivity on the LAN, for example if you have a SmartTV or such which you use to connect to your computer, I myself use a Boxee Box to stream movies from my computer to my TV and it needs my PC to have incoming connections in order to work (at least that’s my finding)
If your network is a home network then you can create a global rule to allow IP from inside the home network to inside the home network (also create this rule for “System”) This will allow devices inside your network to talk freely, assuming you don’t have other rules with higher priorities that nullifies the rules I just mentioned (or other issues). These rules might be too broad for you though, so you can add things like just UDP or just TCP or specific ports etc to custom tailor the rules to only allow the data your devices need to be sending.
Edit: The rules above are assuming that you have private IPs in your network, I haven’t thought about how to do it if each and everyone of your devices has their own IP address… I guess you’d have to do it IP address per IP address.
For example I have 192.168.1.0/24 as my network and hence I allow that whole network, [192.168.1.0 to 192.168.1.255] to communicate with other hosts in that IP range.
I haven’t noticed any problems so far but I do not stream movies from my computer. I do have roku3 streaming player hooked up on one tv and apple tv on another which I just use to watch movies and tv shows. I am kind of weary of messing too much with the settings and rules since I don’t know what I am doing, lol. I will keep that in mind. Thanks.