Firewall Management on Windows 2000 PRO

Hello Experts!

I have learned about Firewall Management on Linux using SME 6.0.  There's a configuration on how to modify ICMP rules wherein you can modify icmpType (echo-reply, destination-unreachable, ... ), and target (ACCEPT, DROP, ...).

My question is : Where can I find this configuration on Windows 2000 PRO ???

Actually, one of my target is I want to disable echo-reply and echo-request.  By the time a specific public IP pings my public IP it will always resulted to "Request timed out".

Do you have any idea on this matter ???

Any help is highly appreciated...

eNTRANCE2002 :-)
LVL 14
Renante EnteraSenior PHP DeveloperAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

I know of no buit in firewall with windows 2k pro. You could either install a 3rd party firewall solution (software based), or upgrade to xp pro with sp2 and configure the built-in firewall to do the blocking for you......
Rich RumbleSecurity SamuraiCommented:
Third parties like ZoneAlarm will give you the grainularity of control you want. XP SP2 has this to a lesser degree but 2000 is ALMOST with out firewall. It does have M$ IPSEC Rules that you can configure, but it blocks all or nothing with reguard to icmp.
I love the picture on this article, cracks me up everytime:

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Rich RumbleSecurity SamuraiCommented:
I should mention- ipsec firewall is good enough to allow you to add certain ip's and what not- so icmp could be blocked for a certain subnet, or even specific host's.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.