Security is one of the main criteria for the quality of online work. A direct component of its provision is correct setting firewall(firewall) of the operating system, which on Windows computers is called a firewall. Let's find out how to optimally configure this protection tool on a PC running Windows 7.

Before proceeding with the settings, you should take into account that if you set the protection settings too high, you can block browser access not only to malicious sites or prevent virus programs from accessing the Internet, but also complicate the work of even safe applications, which for some reason will cause suspicion in the firewall . At the same time, when setting a low level of protection, there is a risk of exposing the system to a threat from intruders or allowing malicious code to penetrate the computer. Therefore, it is recommended not to go to extremes, but to use optimal parameters. In addition, when adjusting the firewall, you should consider what kind of environment you are working in: in a dangerous ( The World Wide Web) or relatively secure (internal network).

Step 1: Go to Firewall Settings

Let’s immediately figure out how to go to the firewall settings in Windows 7.

Stage 2: Firewall activation

Now let's look at the actual procedure for setting up a firewall. First of all, the firewall needs to be activated if it is disabled. This process is described in our separate article.

Step 3: Adding and removing applications from the exclusion list

When setting up a firewall, you need to add those programs that you trust to the list of exceptions for them to work correctly. First of all, this applies to the antivirus to avoid a conflict between it and the firewall, but it is quite possible that there will be a need to do this procedure with some other applications.

1. On the left side of the firewall settings window, click on "Allow launch...".



2. A list of those installed on your PC will open. software. If you do not find the name of the application that you are going to add to the exceptions, you need to click on the button "Allow another program". If you find that this button is not active, click "Change settings".



3. After this, all buttons will become active. You should now be able to click on the element "Allow another program...".



4. A window with a list of programs will open. If it is not found the right application, press "Review…".



5. In the window that opens "Conductor" move to that directory hard drive, which contains the executable file of the desired application with the extension EXE, COM or ICD, select it and click "Open".



6. After this name this application will be displayed in the window "Adding a program" firewall. Select it and click "Add".



7. Finally, the name of this software will also appear in the main window for adding firewall exceptions.



8. By default, the program will be added to exceptions for home network. If you need to add it to the public network exceptions, click on the name of this software.



9. The program change window will open. Click the button "Types of network placements...".



10. In the window that opens, check the box next to the item "Public" and press "OK". If you need to simultaneously remove a program from home network exclusions, uncheck the corresponding box. But, as a rule, in reality this is almost never required.



11. Returning to the Change Program window, click "OK".



12. Now the application will be added to exceptions on public networks.

    

    Attention! It is worth remembering that adding a program to exceptions, and especially through public networks, increases the degree of vulnerability of your system. Therefore, disable protection for public connections only if absolutely necessary.

13. If you discover that an application has been added to the exclusion list in error or is found to pose an unacceptably high level of security vulnerability against attackers, you should remove the application from the list. To do this, select its name and click "Delete".



14. In the dialog box that opens, confirm your intentions by clicking "Yes".



15. The application will be removed from the exclusion list.

Step 4: Adding and removing rules

More precise changes to the firewall parameters by creating specific rules are made through the additional settings window of this tool.

1. Return to the main firewall settings window. How to go there from "Control Panels", described above. If you need to return from the window with the list of allowed programs, just click the button in it "OK".



2. Next, click on the element on the left side of the shell "Extra options".



3. The additional parameters window that opens is divided into three areas: on the left side is the name of the groups, in the center is a list of rules for the selected group, and on the right is a list of actions. To create rules for incoming connections, click on the item "Rules for incoming connections".



4. A list of already created rules for incoming connections will open. To add a new item to the list, click on the item on the right side of the window "Create a rule...".



5. Next, you should select the type of rule to create:
   • For the program;
   • For the port;
   • Predetermined;
   • Customizable.

   In most cases, users need to select one of the first two options. So, to configure the application, set the radio button to position "For the program" and press "Further".



6. Then, by installing a radio button, you need to select whether this rule will apply to all installed programs or only to a specific application. In most cases, you will need to select the second option. After setting the switch, in order to select a specific software, click "Review…".



7. In the opened window "Conductor" go to the directory where the executable file of the program for which you want to create a rule is located. For example, it could be a browser that is being blocked by a firewall. Highlight the name of this application and press "Open".



8. After the path to executable file appeared in the window "Rule Creation Wizards", click "Further".



9. Then you will need to select one of three options by rearranging the radio button:
   • Allow connection;
   • Allow secure connection;
   • Block connection.

   The first and third points are most often used. The second point is used by advanced users. So choose the right option depending on whether you want to allow or block the application from accessing the network, and click "Further".



10. Then, by checking or unchecking the boxes, you should select for which profile the rule is being created:
    • private;
    • domain;
    • public.

    If necessary, you can activate several options at once. After selecting, click "Further".



11. In the last window in the field "Name" Any arbitrary name should be entered of this rule, under which you will be able to find it in the list in the future. Moreover, in the field "Description" You can leave a short comment, but this is not required. After assigning a name, click "Ready".



12. A new rule will be created and appear in the list.

The port rule is created using a slightly different scenario.

Creating rules for outgoing connections follows exactly the same scenario as for incoming ones. The only difference is that you must select the option on the left side of the firewall advanced settings window "Rules for outgoing connection" and only after that click the element "Create a rule...".

The algorithm for deleting a rule, if such a need suddenly arises, is quite simple and intuitive.

IN this material We have considered only basic recommendations for setting up a firewall in Windows 7. Fine-tuning this tool requires considerable experience and a wealth of knowledge. At the same time, the simplest actions, for example, allowing or denying access to the network of a specific program, opening or closing a port, deleting a previously created rule, can be performed even for beginners using the presented instructions.

It is advisable to further protect your computer from attacks by using the Windows Firewall. This one is built in operating system firewall protects by limiting types transmitted information. By enforcing appropriate restrictions, you can reduce the likelihood of unauthorized persons gaining access to your system.

Windows Firewall is a piece of software or hardware that inspects data incoming over the Internet or network and, depending on the firewall settings, blocks or allows it to be sent to your computer.

Windows Firewall can help prevent hackers or malicious software (such as worms) from entering your computer through a network or the Internet. The firewall also helps prevent sending malware to other computers.

Using a firewall, you can block incoming connections and thereby completely protect yourself from all kinds of attacks. You can also deny access to a single program or an entire class of programs. So, by blocking port 80, you will block essentially any browser, since this port is used by browsers to receive web pages.

In most cases, the firewall settings should suit all users. And you don't have to configure it either. Except at startup new program indicate in which networks it is allowed to work and in which it is not. The screenshot below shows that the µTorrent program (torrent client) is launched for the first time and the firewall is asking what to do with it.

By default, it is assumed that you want to allow the program to run only on private networks, such as your home or work network. And in public networks, for example, in a free Wi-Fi zone in some public place, the program will be denied access to the Internet. You need to allow the program to work on public networks, otherwise your programs will not work on public networks, for example (in a library or cafe).

Sometimes you may automatically press a button Allow, forgetting to check the box Community networks. In this case, you will have to configure firewall rules for the program to work properly.

To access the Windows Firewall settings, press the keyboard shortcut + R in the dialog box that appears Execute enter firewall.cpl and press the key Enter ↵

A window will open Windows Firewall which shows that the computer is now connected only to a private network.

To configure Windows Firewall settings, on the left side of the window, click Turn Windows Firewall on or off

A window will open Configure settings, in which you can choose for which networks it will be enabled and for which it will be disabled. By default, the firewall is enabled for both private and public networks.

 Don't disable the firewall! This can be done only before installing a firewall from another developer, so that a conflict does not arise between two programs of the same class.

In order to access additional settings Windows Firewall, select the command Extra options on the left panel.

A window will open in which you will see additional parameters - a summary of them.

The most important thing about advanced firewall settings is rules. Rules can be created for both incoming and outgoing connections. By default, all incoming connections that do not match the rules that allow those connections are denied. But the situation with outgoing connections is different - they are allowed if prohibiting rules have not been created for them.

Go to section Rules for incoming connections. In it you will find all the rules - both general for incoming connections and rules for individually created programs.

Double click on any of the rules. The screenshot below shows the rule for µTorrent. You can disable µTorrent by selecting Block connection

Create a new rule

Let's look at a small example - creating a new rule. Let's say we need to block access to the Network. That is, so that no browser could display the web page, but mail, Skype and other Internet programs would work. This can be achieved only in one way - by blocking port 80 (more precisely, the outgoing connection to port 80).

In the window Windows Firewall with Advanced Security Choose a section Rules for outgoing connection

In the next window on the right panel Actions select team Create a rule

In the window that opens Wizard for creating a rule for a new outgoing connection you need to select the type of rule. If we wanted to ban some specific program, for example Chrome, then you would select the For program rule. And since you need to block all browsers, you should create a rule for the port, select the type of rule For port and press the button Further

In the next window you need to select an action, in our case Block connection, press the button Further

Then you need to determine which profiles the rule should work for. You must select all three profiles, otherwise the rule will work in some networks, but not in others.

In the next window, enter the name of the rule and its description (optional), and click the button Ready

The created rule is shown in the screenshot below.

Now let's check the rule in action. Open any browser and try to access any website. You will see an error message.

Return to the advanced options window.

Double click on the rule we created and in the window that opens Properties: block http check the box Allow connection and press the button OK

Now refresh the page in your browser and it will open.

■ To make it easier for you to create various types of rules, the table below shows some standard TCP/UDP ports.

Standard TCP/UDP ports

Port number, protocol	What is it used for?
20,TCP	FTP (File Transfer Protocol), data
21,TCP	FTP (File Transfer Protocol) commands
22,TCP	SSH (Secure Shell)
23,TCP(Modify)	Telnet
25, TCP/UDP	SMTP (Simple Mail Transfer Protocol), sending mail
37,TCP/UDP	Time synchronization protocol
53, TCP/UDP	DNS (Domain Name System), domain name system
80, TCP/UDP	HTTP (Hyper Text Transfer Protocol)
109, 110, TCP/UDP	POP2 and POP3 protocols are used to receive mail
143, TCP/UDP	Receiving and managing mail, IMAP protocol
220, TCP/UDP	IMAP (Interactive Mail Access Protocol), version 3
443,TCP	Secure HTTP (HTTPS)
465,TCP/UDP	Secure SMTP
989, 990, TCP/UDP	Secure FTP
992, TCP/UDP	Secure Telnet (over SSL/TLS)
1194, TCP/UDP	OpenVPN
1234, TCP/UDP	VLC Media Player, streaming video, IPTV
1214,TCP	Kazaa (file sharing network client)
5190,TCP	ICQ and AOL Instant Messenger
6881–6887, TCP/UDP	Torrent client ports
6889–6890, TCP/UDP	Another set of ports for Torrent clients

In fact, there are many more ports than are presented in the table. Some of them are appointed officially, some unofficially. Everything is clear with the official ones - they can only be used for clearly defined actions. With unofficial ones, not everything is so simple. Today they can be used by one program, tomorrow - by another.

Firewall Windows Defender was added by Microsoft to increase user security in general. Since the first versions, functionality has been created with the ability to add programs and various applications to firewall exceptions. This is because there are quite a few necessary programs, which the firewall does not accept.

This article will show you how to add a program to the Windows 10 firewall exception. We will also look at how to change the permission to interact with an application or component in the Windows 10 Defender Firewall. It can be much easier to completely work in Windows 10 and check whether the desired program is working.

When launching new programs, a firewall window pops up, asking the user to allow or deny communication with applications. If the user mistakenly chooses the wrong option, change his decision in these settings.

How to Add an App to a Windows 10 Firewall Exception

Adding exceptions to the Windows Firewall occurs by creating inbound and outbound rules. It is possible to create a connection rule for both the program and the port. Because sometimes there is a need to allow a specific port for a specific application.

When an incorrect firewall rule is created, or when a connection is blocked by a Windows Firewall rule, users have the option to disable or completely remove the problematic rule. To do this, you need to find an unnecessary rule from the list of rules and select the option to disable the rule or delete it in the context menu.

conclusions

Firewall, along with the updated Defender in Windows 10, is a useful tool for protecting the system as a whole. Therefore, we do not recommend turning off your firewall completely. More in a simple way To solve the situation with applications not working due to the firewall, you can add exceptions by creating rules for incoming and outgoing connections.

In this article, we figured out how to add a program to the Windows 10 firewall exception. We also recommend that you pay attention to the instructions on how to allow an application in the firewall, since it is possible that the wrong option was selected when the request automatically popped up.

A system utility that was created by Microsoft to protect personal computer from malicious network programs or unwanted traffic from the Internet, which could somehow damage the installed operating system.

However, as time has shown, this function or utility, does not work quite as users expected. For example, when installing some network program, it refuses to work, and sometimes does not even start, and all this is thanks to the firewall. Tunngle is the latest thing I've been trying to set up recently. Namely, after installation the program did not want to work for the reason that it was not found network adapter, having rummaged through the forum of this application, they recommended it to me add the program to the Windows Firewall exceptions list. You won't believe it, but as soon as I did this everything worked.

The same thing sometimes happens with various online games, when the firewall simply does not allow you to connect to the server, thereby frustrating the user. Usually it’s the same with games, you just need to add the file to be launched into the Windows Firewall exceptions and everything starts working like clockwork.

Of course, you can simply disable the firewall completely, but what if you cannot do this for certain reasons? It is for such cases that there is a list of exceptions. Therefore, let's take a closer look, How can I add programs to the Windows Firewall exception list? on all new systems and on Windows XP.

Add to the list of firewall exceptions on Windows 10 (7, 8)

So, no matter what system you use, the initial action, of course, will be logging into the control panel.

If you are using Windows 10, you can do it this way: right-click on the " Start" and there in the menu that appears, select the item " Control Panel».

Now, focusing on the left sidebar, go to the parameters “ Allowing applications to interact with the firewall...».

We will be transferred to the next, main step, where we will need to first click “ Change settings", and then " Allow another app».

Using the button " Review", we find the launch file of the program that we want to place in the Windows Firewall exceptions.

Having selected the application, click " Add».

Next, in the list of allowed programs and components, opposite the added file, check the box for “ Private" And " Public network" And of course, to complete, don’t forget to click “ OK».

Adding an application to a firewall exception on Windows XP

So, through the start we go to the control panel, and then to “”.

By opening the “ Exceptions» clicks on the button « Add a program».

As always, to save the settings, click on all windows “ OK».

I repeat, just in case, once again that the first option is suitable for all new systems from seven to ten. Perhaps in in some places the names of some parameters will be changed, but there’s nothing wrong with that, since they still remain in the same places. Well, for everything else, you have a comment form in which you can leave a question that concerns you and later receive an answer to it.

How to add a program to the firewall exception list in Windows 10

Adding the selected application to the Windows Firewall exceptions list is a standard procedure on computers running Windows OS. Performing this operation assumes that you have administrative access to system resources.

Instructions

To perform the procedure for adding the selected program to the list of exceptions of the Windows firewall in the XP version, call the main system menu by clicking the “Start” button and go to “Settings”. Expand the "Control Panel" link and go to the "Windows Firewall" tab. Select the “Exceptions” tab of the dialog box that opens and click the “Add program” button.

Select the desired application in the list (when the program is displayed) and confirm the selected action by pressing the OK button. Use the “Browse” button if the required application is not in the list and specify the path to the executable file of the selected program. Use the “Open” command and save your changes by clicking OK (for Windows XP).

Bring up the OS main menu Windows versions 7, click the “Start” button and go to “Control Panel”. Expand the "System and Security" link and expand the "Windows Firewall" node. Select the "Allow programs through Windows Firewall" section and open the "Allow another program..." link. Select the desired application in the directory or use the "Browse" button to specify the path to the executable file of the selected program. Save your changes by clicking OK (for Windows 7).

Alternative method performing the same procedure can be done using netsh commands with firewall context to change Windows Firewall settings. Please note that in some cases the General tab may not be active. This means that changes to firewall settings are prohibited group policy or there are insufficient user rights to perform such an operation. You should also remember that the firewall program in Windows Server 2003 is not enabled by default.