TCP-IP Filtering

Discussion in 'other security issues & news' started by controler, Jan 9, 2003.

Thread Status:
Not open for further replies.
  1. controler

    controler Guest


    Is anyone using the TCP-IP Filtering option in WIndows XP?

    control panel

    network connections

    right click on the connection you use. example = your dialup connection you see there or
    a default DSL or Cable connection you see there (local area connection)

    then click properties

    then highlight internet protacol (TCP/IP)

    Click properties

    click advanced

    click options

    Tcp/IP filtering should be highlighted

    click properties

    should see an enable TCP/IP Filtering check box as in the screen shot.

    Attached Files:

  2. Mike_Healan

    Mike_Healan Registered Member

    Mar 6, 2002
    Well I'll just be damned!!! I never knew that was there.

    And leave it to Microsoft to screw it up. You can allow all or allow those on a list. No option to deny all or deny those on a list. That would almost make a decent firewall if they'd let you deny a list of ports/IPs.
  3. JacK

    JacK Registered Member

    Jun 20, 2002
    Belgium -Li?ge
    lol Don't forget it only filters IN.


  4. controler

    controler Guest

    Yes it is funny :D

    We are used to a list of deny filters not a list of accept filters. But I think loaded with the easy access info on PORTS, people might be able to add those they know they should have open using this advanced feature. Funny thing is I found this feature on my own and hadn't seen any info on it. As you can see it takes a bit of clicking to get to it LOL
    I still wonder how this works with the built in firewall.
    Can you imagine the converts XP would get if their IP filtering DID
    block outgoing atempts?
    Do you think it would even help as another layer of defense?
  5. CrazyM

    CrazyM Firewall Expert

    Feb 9, 2002
    BC, Canada
    Hi controler
    The TCP/IP Filtering is rather limited. Not sure if you saw the following post on IPSec which can control inbound and outbound traffic. Even to and from specific addresses, but not applications. A custom IPSec policy could be used as another layer of defense.;start=0

  6. Thank you....I was notified to "restart"...this should do it!!
Thread Status:
Not open for further replies.