Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Block a local IP address from XP Firewall

Posted on 2005-04-21
Medium Priority
Last Modified: 2013-12-04
Is it possible, on a computer running Windows XP SP2, to block all incoming traffic coming from an IP address on my local network,  using Windows XP SP2 Firewall ? I can't see any options relating to blocking IP addresses in XP's firewall, only ports and programs.
Or could I use something else, like Restricted Zones defined in IE, or any other builtin Windows tool ?

Question by:ndidomenico

Expert Comment

by:nader alkahtani
ID: 13838826

Author Comment

ID: 13838852
I want to block ALL traffic coming from ONE specific IP address, not only Ping (icmp)
This link seems to relate only to blocking icmp traffic. I will read through it in case I'm missing something...


Expert Comment

ID: 13838871
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

LVL 38

Accepted Solution

Rich Rumble earned 2000 total points
ID: 13845474
XP's firewall is not capable of this, it is stateful only, and not able to be configured to block ip's, but can only block based on port's and protocols only. http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/mangxpsp2/mngwfw.mspx

IPSEC firewalls are not great either, if you bind your source port to port 88 or 500, you bypass ipsec firewalls. In 2003 they have added the ablity to disable this "function" of by-pass, if you bind to port  500/tcp    isakmp
you can still by-pass the ipsec-

If you were to use XP's firewall, it would be able to keep everyone out, but it would not allow certain exceptions, so if you open a port like 445, you have no say over who can and can't access that port. Now windows IPSEC is much more configurable, and binding your source port to port 500 is not something a novice, and sometimes an experienced person will attempt. I'd suggest using both in conjunction, open just what you need through the xp firewall, and use IPSEC to further lock down who can an can't access your pc. It's probably overall to buy or DL a program that does all this on it's own, ZoneAlarmPro get's my vote.

Author Comment

ID: 13846321
Thanks for the info. I'll then probably go with a software firewall solution as suggested. I was initially thinking about using Sygate personal firewall or Kerio.

LVL 38

Expert Comment

by:Rich Rumble
ID: 13846871
Both good choices from what I hear.

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
this video summaries big data hadoop online training demo (http://onlineitguru.com/big-data-hadoop-online-training-placement.html) , and covers basics in big data hadoop .
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses
Course of the Month13 days, 15 hours left to enroll

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question