Windows Firewall with Advanced Security

Authorizing connections

VPNServer hosts both Telnet server and Web server.

VPNServer firewall setting:

Both W7 and W8 computers can access the Telnet and Web server without authorization and encryption.

Communication between W7 and VPNServer will be protected by IPSec.

W7 can access the Telnet server and Web Server but W8 cannot.

After W9 computer joins the domain, you want only W7 computer to access the Telnet server.

W9 computer cannot access the Telnet server.

Program type vs. Port type

The Predefined type is the subset of Program type.

Whenever possible, you should choose the Program type. This type will allow or block connections for a specific executable file, regardless the port numbers it might use.

When you choose the port type, it allows or blocks communications for a specific TCP or UDP port number, regardless the program generating the traffic.

For example, a malware, e.g. PayPal data stealing trojan and IcePack malware, might be installed in your computer. If you open a port number 80, the malware might use this port number. However, if you create the inbound rule based on Program type as follows:

The malware in your system cannot communicate with port number:80. Only the Web server can use the port number:80 to communicate with other systems.