Block a local IP address from XP Firewall

Is it possible, on a computer running Windows XP SP2, to block all incoming traffic coming from an IP address on my local network,  using Windows XP SP2 Firewall ? I can't see any options relating to blocking IP addresses in XP's firewall, only ports and programs.
Or could I use something else, like Restricted Zones defined in IE, or any other builtin Windows tool ?

Thanks.
ndidomenicoAsked:
Who is Participating?
 
Rich RumbleSecurity SamuraiCommented:
XP's firewall is not capable of this, it is stateful only, and not able to be configured to block ip's, but can only block based on port's and protocols only. http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/mangxpsp2/mngwfw.mspx

IPSEC firewalls are not great either, if you bind your source port to port 88 or 500, you bypass ipsec firewalls. In 2003 they have added the ablity to disable this "function" of by-pass, if you bind to port  500/tcp    isakmp
you can still by-pass the ipsec-
http://support.microsoft.com/kb/810207
http://support.microsoft.com/?kbid=811832

If you were to use XP's firewall, it would be able to keep everyone out, but it would not allow certain exceptions, so if you open a port like 445, you have no say over who can and can't access that port. Now windows IPSEC is much more configurable, and binding your source port to port 500 is not something a novice, and sometimes an experienced person will attempt. I'd suggest using both in conjunction, open just what you need through the xp firewall, and use IPSEC to further lock down who can an can't access your pc. It's probably overall to buy or DL a program that does all this on it's own, ZoneAlarmPro get's my vote.
-rich
0
 
nader alkahtaniNetwork EngineerCommented:
0
 
ndidomenicoAuthor Commented:
I want to block ALL traffic coming from ONE specific IP address, not only Ping (icmp)
This link seems to relate only to blocking icmp traffic. I will read through it in case I'm missing something...

Thanks
0
On-Demand: Securing Your Wi-Fi for Summer Travel

Traveling this summer?Check out our on-demand webinar to learn about the importance of Wi-Fi security and 3 easy measures you can start taking immediately to protect your private data while using public Wi-Fi. Follow us today to learn more!

 
bmquintasCommented:
0
 
ndidomenicoAuthor Commented:
Thanks for the info. I'll then probably go with a software firewall solution as suggested. I was initially thinking about using Sygate personal firewall or Kerio.

 
0
 
Rich RumbleSecurity SamuraiCommented:
Both good choices from what I hear.
GL!
-rich
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.