1.7 Given a scenario, configure Microsoft Windows networking features on a client/desktop
📘CompTIA A+ Core 2 (220-1202)
1. Local OS Firewall Settings
A firewall is a security tool built into Windows that controls incoming and outgoing network traffic. Think of it as a gatekeeper that decides which programs or services can talk to the network or internet.
In Windows, the firewall is called Windows Defender Firewall (or sometimes just “Windows Firewall”).
The exam focuses on configuring the firewall on a client/desktop (like Windows 10 or 11).
Why it’s important:
- Protects your computer from unauthorized access.
- Stops malware or hackers from sending or receiving data.
- Lets safe apps or services communicate when needed.
2. Application Restrictions and Exceptions
Application Restrictions
Windows Firewall can block or allow specific applications. This is called application-level filtering.
- Blocked application: Cannot send or receive network data.
- Allowed application: Can freely communicate over the network.
Example apps to control (without real-world analogies):
- Web browsers (Chrome, Edge)
- File sharing apps (OneDrive, Dropbox)
- Remote access tools (Remote Desktop)
Exceptions
An exception is a rule that overrides the default firewall blocking. By default, many apps are blocked until you allow them. Adding an exception lets the firewall trust certain apps.
Types of exceptions:
- Program exceptions: Allow a specific program through the firewall.
- Port exceptions: Allow communication through a specific network port (like 80 for HTTP, 443 for HTTPS).
- Predefined service exceptions: Common Windows services like File and Printer Sharing or Remote Desktop.
Key points for the exam:
- Exceptions are necessary for apps to function on a network.
- Only add exceptions for trusted apps; too many can reduce security.
- You can create rules for inbound (coming in) and outbound (going out) traffic.
3. Configuration of Local Firewall Settings
Windows lets you configure firewall settings in several ways:
A. Accessing Firewall Settings
- Go to Control Panel → System and Security → Windows Defender Firewall
- Or search “Windows Firewall” in the Start menu.
B. Turn Firewall On or Off
- Turn on: Blocks untrusted apps, more secure.
- Turn off: Only temporarily for troubleshooting; risky otherwise.
C. Allowing or Blocking Apps
Steps:
- Click “Allow an app or feature through Windows Defender Firewall”
- Select the app from the list or Add another app
- Choose network types:
- Private network: Home or work network
- Public network: Coffee shop, airport
- Check or uncheck boxes to allow/block.
D. Advanced Configuration
- Open Windows Defender Firewall with Advanced Security
- Options:
- Inbound Rules: Control incoming traffic.
- Outbound Rules: Control outgoing traffic.
- New Rule Wizard: Create rules for:
- Programs
- Ports
- Predefined services
- Custom rules
- Each rule can specify:
- Which app or port
- Protocol (TCP/UDP)
- Scope (which IP addresses are allowed or blocked)
- Action (Allow or Block)
E. Monitoring and Logging
- Firewall can log blocked connections for troubleshooting.
- Logs help identify apps or services being blocked unintentionally.
4. Practical Exam Tips
- Know where to find firewall settings in Windows.
- Understand inbound vs outbound rules.
- Be able to allow/block an application for private/public networks.
- Know how to create exceptions for programs, ports, and services.
- Recognize default behavior: Windows blocks untrusted apps unless allowed.
- Be familiar with Advanced Security console for creating more granular rules.
Summary Table for Quick Revision
| Feature | Purpose |
|---|---|
| Windows Firewall | Blocks or allows network traffic on your PC |
| Application Restrictions | Block or allow specific apps |
| Exceptions | Rules that let certain apps or ports bypass default blocking |
| Inbound Rules | Control traffic coming into your PC |
| Outbound Rules | Control traffic leaving your PC |
| Predefined Services | Common Windows services like Remote Desktop or File Sharing |
| Advanced Security Console | Create custom rules, specify protocols, ports, IPs, and actions |
| Logging | Track blocked traffic for troubleshooting |
✅ Bottom line for the exam:
Be able to configure the firewall, allow/block apps, create exceptions, and understand inbound vs outbound rules. Focus on practical configuration tasks—that’s what CompTIA tests.
