Question about Windows XP firewall

Hello,
Using XP Home SP1, have a wired-router b/w cable modem and PC

I’m considering switching to the Windows XP Home supplied firewall and a 3rd
party AV (free) program. I have been a ZA user (both free and paid versions)
and need some advice. I switched to the Windows FW and went to the Shield Up
site to see what it says about my PC. All but port 113 was closed, the rest
of my PC ports were stealth.

How do I close or stealth/hide this port using the Windows FW?

Thanks
JHL

You've got more immediate issues to attend to, JHL:

The ICF firewall in WinXP SP1 is not nearly as robust as the Windos Firewall
in WinXP SP2/SP3! See http://technet.microsoft.com/en-us/bb457156.aspx

Your computer remains vulnerable to thousands of security exploits without
being fully patched! Get on this right way!

[All anti-virus applications are third-party.]

Protect Your PC!
http://www.microsoft.com/athome/secu...r/default.mspx

Learn how to protect your PC by taking three simple steps
http://www.microsoft.com/downloads/d...6-602954130D38
--
~Robear Dyer (PA Bear)
MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
AumHa VSOP & Admin http://aumha.net
DTS-L http://dts-l.net/


JHL wrote:
> Hello,
> Using XP Home SP1, have a wired-router b/w cable modem and PC
>
> I’m considering switching to the Windows XP Home supplied firewall and a
> 3rd
> party AV (free) program. I have been a ZA user (both free and paid
> versions) and need some advice. I switched to the Windows FW and went to
> the Shield Up site to see what it says about my PC. All but port 113 was
> closed, the rest of my PC ports were stealth.
>
> How do I close or stealth/hide this port using the Windows FW?
>
> Thanks
> JHL

I'll upgrade to sp2 or sp3 this weekend. I thought I had all the updates
installed until I found out about sp3 recently, then found out there was sp2.
I don't know where I missed it.

So, the router isn't giving me protection?

"PA Bear [MS MVP]" wrote:

> You've got more immediate issues to attend to, JHL:
>
> The ICF firewall in WinXP SP1 is not nearly as robust as the Windos Firewall
> in WinXP SP2/SP3! See http://technet.microsoft.com/en-us/bb457156.aspx
>
> Your computer remains vulnerable to thousands of security exploits without
> being fully patched! Get on this right way!
>
> [All anti-virus applications are third-party.]
>
> Protect Your PC!
> http://www.microsoft.com/athome/secu...r/default.mspx
>
> Learn how to protect your PC by taking three simple steps
> http://www.microsoft.com/downloads/d...6-602954130D38
> --
> ~Robear Dyer (PA Bear)
> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
> AumHa VSOP & Admin http://aumha.net
> DTS-L http://dts-l.net/
>
>
> JHL wrote:
> > Hello,
> > Using XP Home SP1, have a wired-router b/w cable modem and PC
> >
> > I’m considering switching to the Windows XP Home supplied firewall and a
> > 3rd
> > party AV (free) program. I have been a ZA user (both free and paid
> > versions) and need some advice. I switched to the Windows FW and went to
> > the Shield Up site to see what it says about my PC. All but port 113 was
> > closed, the rest of my PC ports were stealth.
> >
> > How do I close or stealth/hide this port using the Windows FW?
> >
> > Thanks
> > JHL
>
>

"JHL" <JHL@discussions.microsoft.com> wrote in message
news:8CF4FB9E-0BC8-450F-8660-53282739DD2E@microsoft.com...
> I'll upgrade to sp2 or sp3 this weekend. I thought I had all the updates
> installed until I found out about sp3 recently, then found out there was
> sp2.
> I don't know where I missed it.
>
> So, the router isn't giving me protection?
>
> "PA Bear [MS MVP]" wrote:
>
>> You've got more immediate issues to attend to, JHL:
>>
>> The ICF firewall in WinXP SP1 is not nearly as robust as the Windos
>> Firewall
>> in WinXP SP2/SP3! See http://technet.microsoft.com/en-us/bb457156.aspx
>>
>> Your computer remains vulnerable to thousands of security exploits
>> without
>> being fully patched! Get on this right way!
>>
>> [All anti-virus applications are third-party.]
>>
>> Protect Your PC!
>> http://www.microsoft.com/athome/secu...r/default.mspx
>>
>> Learn how to protect your PC by taking three simple steps
>> http://www.microsoft.com/downloads/d...6-602954130D38
>> --
>> ~Robear Dyer (PA Bear)
>> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
>> AumHa VSOP & Admin http://aumha.net
>> DTS-L http://dts-l.net/
>>
>>
>> JHL wrote:
>> > Hello,
>> > Using XP Home SP1, have a wired-router b/w cable modem and PC
>> >
>> > I'm considering switching to the Windows XP Home supplied firewall and
>> > a
>> > 3rd
>> > party AV (free) program. I have been a ZA user (both free and paid
>> > versions) and need some advice. I switched to the Windows FW and went
>> > to
>> > the Shield Up site to see what it says about my PC. All but port 113
>> > was
>> > closed, the rest of my PC ports were stealth.
>> >
>> > How do I close or stealth/hide this port using the Windows FW?
>> >
>> > Thanks
>> > JHL
>>
>>
You have a lot of work to do before you install SP2 or SP3. You need to
find the instructions about installing both updates.
After you have followed all of the instructions and are certain that your
system is malware free, you should install SP3. SP3 includes
all of the fixes for SP2 and all of the 90 or so updates since SP2. You
should also read the prerequisites for each update and insure
that your system meets them. For instance, I had to install an update for
the BIOS on my Dell 4600 to meet the requirements
for SP2.

Jim

Get your machine fully patched before worry about that.

PS: If you're running WinXP SP1, you can install SP3 (manually) and avoid
installing SP2 and over 100 post-SP2 updates entirely.

I would make absolutely certain that the machine doesn't have any hijackware
issues before installing SP2 or SP3.

Checking for/Help with Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://aumha.net/viewtopic.php?t=5878
http://wiki.castlecops.com/Malware_R...:_Introduction
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/data/prevention.htm
http://inetexplorer.mvps.org/tshoot.html
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine2.blogspot.com/
http://www.elephantboycomputers.com/...moving_Malware

When all else fails, HijackThis v2.0.2
(http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use.
It will help you to both identify and remove any hijackware/spyware with
assistance from an expert. **Post your log to
http://aumha.net/viewforum.php?f=30,
http://forums.spybot.info/forumdisplay.php?f=22,
http://castlecops.com/forum67.html, or other appropriate forums for review
by an expert in such matters, not here.**

If the procedures look too complex - and there is no shame in admitting this
isn't your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA) computer repair shop.
--
~Robear Dyer (PA Bear)
MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
AumHa VSOP & Admin http://aumha.net
DTS-L http://dts-l.net/



JHL wrote:
> I'll upgrade to sp2 or sp3 this weekend. I thought I had all the updates
> installed until I found out about sp3 recently, then found out there was
> sp2. I don't know where I missed it.
>
> So, the router isn't giving me protection?
>
> "PA Bear [MS MVP]" wrote:
>
>> You've got more immediate issues to attend to, JHL:
>>
>> The ICF firewall in WinXP SP1 is not nearly as robust as the Windos
>> Firewall in WinXP SP2/SP3! See
>> http://technet.microsoft.com/en-us/bb457156.aspx
>>
>> Your computer remains vulnerable to thousands of security exploits
>> without
>> being fully patched! Get on this right way!
>>
>> [All anti-virus applications are third-party.]
>>
>> Protect Your PC!
>> http://www.microsoft.com/athome/secu...r/default.mspx
>>
>> Learn how to protect your PC by taking three simple steps
>> http://www.microsoft.com/downloads/d...6-602954130D38
>> --
>> ~Robear Dyer (PA Bear)
>> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
>> AumHa VSOP & Admin http://aumha.net
>> DTS-L http://dts-l.net/
>>
>>
>> JHL wrote:
>>> Hello,
>>> Using XP Home SP1, have a wired-router b/w cable modem and PC
>>>
>>> I’m considering switching to the Windows XP Home supplied firewall and a
>>> 3rd
>>> party AV (free) program. I have been a ZA user (both free and paid
>>> versions) and need some advice. I switched to the Windows FW and went
>>> to
>>> the Shield Up site to see what it says about my PC. All but port 113
>>> was
>>> closed, the rest of my PC ports were stealth.
>>>
>>> How do I close or stealth/hide this port using the Windows FW?
>>>
>>> Thanks
>>> JHL

"JHL" wrote:

> Hello,
> Using XP Home SP1, have a wired-router b/w cable modem and PC
>
> I’m considering switching to the Windows XP Home supplied firewall and a 3rd
> party AV (free) program. I have been a ZA user (both free and paid versions)
> and need some advice. I switched to the Windows FW and went to the Shield Up
> site to see what it says about my PC. All but port 113 was closed, the rest
> of my PC ports were stealth.
>
> How do I close or stealth/hide this port using the Windows FW?
>
> Thanks
> JHL
>
Hello,
For port 113 try the folowing:
From http://www.grc.com/default.htm
New users of NAT routers, who use this site to check their security, are
often disappointed to discover a single closed (blue) port floating in a calm
sea of stealth green.
The good news is . . . it is possible to configure NAT routers to return
them to full stealth. The trick is to use the router's own "port forwarding"
configuration options to forward just port 113 into the wild blue yonder.
Just tell the router to forward port 113 packets to a completely non-existent
IP address, one way up at the end of your router's internal address range.
The router will then NOT return a port closed status. It will simply forward
the port 113 packet "nowhere" . . . and your network will be returned to full
stealth status.

Find the links on this site to gain information for your set up.

take care.
beamish.

beamish - Thanks

"beamish" wrote:

>
>
> "JHL" wrote:
>
> > Hello,
> > Using XP Home SP1, have a wired-router b/w cable modem and PC
> >
> > I’m considering switching to the Windows XP Home supplied firewall and a 3rd
> > party AV (free) program. I have been a ZA user (both free and paid versions)
> > and need some advice. I switched to the Windows FW and went to the Shield Up
> > site to see what it says about my PC. All but port 113 was closed, the rest
> > of my PC ports were stealth.
> >
> > How do I close or stealth/hide this port using the Windows FW?
> >
> > Thanks
> > JHL
> >
> Hello,
> For port 113 try the folowing:
> From http://www.grc.com/default.htm
> New users of NAT routers, who use this site to check their security, are
> often disappointed to discover a single closed (blue) port floating in a calm
> sea of stealth green.
> The good news is . . . it is possible to configure NAT routers to return
> them to full stealth. The trick is to use the router's own "port forwarding"
> configuration options to forward just port 113 into the wild blue yonder.
> Just tell the router to forward port 113 packets to a completely non-existent
> IP address, one way up at the end of your router's internal address range.
> The router will then NOT return a port closed status. It will simply forward
> the port 113 packet "nowhere" . . . and your network will be returned to full
> stealth status.
>
> Find the links on this site to gain information for your set up.
>
> take care.
> beamish.
>

PA Bear
fully updated to SP3. No problems (so far) with the update. Thanks for
your concern.

Now, back to one of my orginal questions. Does my router provide enough
security with whatever firewall I chose to cover the open 113 port?

"PA Bear [MS MVP]" wrote:

> Get your machine fully patched before worry about that.
>
> PS: If you're running WinXP SP1, you can install SP3 (manually) and avoid
> installing SP2 and over 100 post-SP2 updates entirely.
>
> I would make absolutely certain that the machine doesn't have any hijackware
> issues before installing SP2 or SP3.
>
> Checking for/Help with Hijackware
> http://aumha.org/a/parasite.htm
> http://aumha.org/a/quickfix.htm
> http://aumha.net/viewtopic.php?t=5878
> http://wiki.castlecops.com/Malware_R...:_Introduction
> http://mvps.org/winhelp2002/unwanted.htm
> http://inetexplorer.mvps.org/data/prevention.htm
> http://inetexplorer.mvps.org/tshoot.html
> http://www.mvps.org/sramesh2k/Malware_Defence.htm
> http://defendingyourmachine2.blogspot.com/
> http://www.elephantboycomputers.com/...moving_Malware
>
> When all else fails, HijackThis v2.0.2
> (http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use.
> It will help you to both identify and remove any hijackware/spyware with
> assistance from an expert. **Post your log to
> http://aumha.net/viewforum.php?f=30,
> http://forums.spybot.info/forumdisplay.php?f=22,
> http://castlecops.com/forum67.html, or other appropriate forums for review
> by an expert in such matters, not here.**
>
> If the procedures look too complex - and there is no shame in admitting this
> isn't your cup of tea - take the machine to a local, reputable and
> independent (i.e., not BigBoxStoreUSA) computer repair shop.
> --
> ~Robear Dyer (PA Bear)
> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
> AumHa VSOP & Admin http://aumha.net
> DTS-L http://dts-l.net/
>
>
>
> JHL wrote:
> > I'll upgrade to sp2 or sp3 this weekend. I thought I had all the updates
> > installed until I found out about sp3 recently, then found out there was
> > sp2. I don't know where I missed it.
> >
> > So, the router isn't giving me protection?
> >
> > "PA Bear [MS MVP]" wrote:
> >
> >> You've got more immediate issues to attend to, JHL:
> >>
> >> The ICF firewall in WinXP SP1 is not nearly as robust as the Windos
> >> Firewall in WinXP SP2/SP3! See
> >> http://technet.microsoft.com/en-us/bb457156.aspx
> >>
> >> Your computer remains vulnerable to thousands of security exploits
> >> without
> >> being fully patched! Get on this right way!
> >>
> >> [All anti-virus applications are third-party.]
> >>
> >> Protect Your PC!
> >> http://www.microsoft.com/athome/secu...r/default.mspx
> >>
> >> Learn how to protect your PC by taking three simple steps
> >> http://www.microsoft.com/downloads/d...6-602954130D38
> >> --
> >> ~Robear Dyer (PA Bear)
> >> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
> >> AumHa VSOP & Admin http://aumha.net
> >> DTS-L http://dts-l.net/
> >>
> >>
> >> JHL wrote:
> >>> Hello,
> >>> Using XP Home SP1, have a wired-router b/w cable modem and PC
> >>>
> >>> I’m considering switching to the Windows XP Home supplied firewall and a
> >>> 3rd
> >>> party AV (free) program. I have been a ZA user (both free and paid
> >>> versions) and need some advice. I switched to the Windows FW and went
> >>> to
> >>> the Shield Up site to see what it says about my PC. All but port 113
> >>> was
> >>> closed, the rest of my PC ports were stealth.
> >>>
> >>> How do I close or stealth/hide this port using the Windows FW?
> >>>
> >>> Thanks
> >>> JHL
>
>

If you ran a thorough check for hijackware and got the machine fully patched
in the last 5-6 hours, I bow to your remarkable skills. You certainly don't
need any more assistance from me.

Good luck.


JHL wrote:
> PA Bear
> fully updated to SP3. No problems (so far) with the update. Thanks for
> your concern.
>
> Now, back to one of my orginal questions. Does my router provide enough
> security with whatever firewall I chose to cover the open 113 port?
>
> "PA Bear [MS MVP]" wrote:
>
>> Get your machine fully patched before worry about that.
>>
>> PS: If you're running WinXP SP1, you can install SP3 (manually) and avoid
>> installing SP2 and over 100 post-SP2 updates entirely.
>>
>> I would make absolutely certain that the machine doesn't have any
>> hijackware issues before installing SP2 or SP3.
>>
>> Checking for/Help with Hijackware
>> http://aumha.org/a/parasite.htm
>> http://aumha.org/a/quickfix.htm
>> http://aumha.net/viewtopic.php?t=5878
>> http://wiki.castlecops.com/Malware_R...:_Introduction
>> http://mvps.org/winhelp2002/unwanted.htm
>> http://inetexplorer.mvps.org/data/prevention.htm
>> http://inetexplorer.mvps.org/tshoot.html
>> http://www.mvps.org/sramesh2k/Malware_Defence.htm
>> http://defendingyourmachine2.blogspot.com/
>> http://www.elephantboycomputers.com/...moving_Malware
>>
>> When all else fails, HijackThis v2.0.2
>> (http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use.
>> It will help you to both identify and remove any hijackware/spyware with
>> assistance from an expert. **Post your log to
>> http://aumha.net/viewforum.php?f=30,
>> http://forums.spybot.info/forumdisplay.php?f=22,
>> http://castlecops.com/forum67.html, or other appropriate forums for
>> review
>> by an expert in such matters, not here.**
>>
>> If the procedures look too complex - and there is no shame in admitting
>> this isn't your cup of tea - take the machine to a local, reputable and
>> independent (i.e., not BigBoxStoreUSA) computer repair shop.
>> --
>> ~Robear Dyer (PA Bear)
>> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
>> AumHa VSOP & Admin http://aumha.net
>> DTS-L http://dts-l.net/
>>
>>
>>
>> JHL wrote:
>>> I'll upgrade to sp2 or sp3 this weekend. I thought I had all the
>>> updates
>>> installed until I found out about sp3 recently, then found out there was
>>> sp2. I don't know where I missed it.
>>>
>>> So, the router isn't giving me protection?
>>>
>>> "PA Bear [MS MVP]" wrote:
>>>
>>>> You've got more immediate issues to attend to, JHL:
>>>>
>>>> The ICF firewall in WinXP SP1 is not nearly as robust as the Windos
>>>> Firewall in WinXP SP2/SP3! See
>>>> http://technet.microsoft.com/en-us/bb457156.aspx
>>>>
>>>> Your computer remains vulnerable to thousands of security exploits
>>>> without
>>>> being fully patched! Get on this right way!
>>>>
>>>> [All anti-virus applications are third-party.]
>>>>
>>>> Protect Your PC!
>>>> http://www.microsoft.com/athome/secu...r/default.mspx
>>>>
>>>> Learn how to protect your PC by taking three simple steps
>>>> http://www.microsoft.com/downloads/d...6-602954130D38
>>>> --
>>>> ~Robear Dyer (PA Bear)
>>>> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
>>>> AumHa VSOP & Admin http://aumha.net
>>>> DTS-L http://dts-l.net/
>>>>
>>>>
>>>> JHL wrote:
>>>>> Hello,
>>>>> Using XP Home SP1, have a wired-router b/w cable modem and PC
>>>>>
>>>>> I’m considering switching to the Windows XP Home supplied firewall and
>>>>> a
>>>>> 3rd
>>>>> party AV (free) program. I have been a ZA user (both free and paid
>>>>> versions) and need some advice. I switched to the Windows FW and went
>>>>> to
>>>>> the Shield Up site to see what it says about my PC. All but port 113
>>>>> was
>>>>> closed, the rest of my PC ports were stealth.
>>>>>
>>>>> How do I close or stealth/hide this port using the Windows FW?
>>>>>
>>>>> Thanks
>>>>> JHL

Pure luck. Trust me, but glad it seems to be working.
I did switch back to ZA (free), with the AVG (free) anti-virus.

That port still is not hidden using ZA, and I don't know how important that
it really is, so I'm going to let it go - for now.


"PA Bear [MS MVP]" wrote:

> If you ran a thorough check for hijackware and got the machine fully patched
> in the last 5-6 hours, I bow to your remarkable skills. You certainly don't
> need any more assistance from me.
>
> Good luck.
>
>
> JHL wrote:
> > PA Bear
> > fully updated to SP3. No problems (so far) with the update. Thanks for
> > your concern.
> >
> > Now, back to one of my orginal questions. Does my router provide enough
> > security with whatever firewall I chose to cover the open 113 port?
> >
> > "PA Bear [MS MVP]" wrote:
> >
> >> Get your machine fully patched before worry about that.
> >>
> >> PS: If you're running WinXP SP1, you can install SP3 (manually) and avoid
> >> installing SP2 and over 100 post-SP2 updates entirely.
> >>
> >> I would make absolutely certain that the machine doesn't have any
> >> hijackware issues before installing SP2 or SP3.
> >>
> >> Checking for/Help with Hijackware
> >> http://aumha.org/a/parasite.htm
> >> http://aumha.org/a/quickfix.htm
> >> http://aumha.net/viewtopic.php?t=5878
> >> http://wiki.castlecops.com/Malware_R...:_Introduction
> >> http://mvps.org/winhelp2002/unwanted.htm
> >> http://inetexplorer.mvps.org/data/prevention.htm
> >> http://inetexplorer.mvps.org/tshoot.html
> >> http://www.mvps.org/sramesh2k/Malware_Defence.htm
> >> http://defendingyourmachine2.blogspot.com/
> >> http://www.elephantboycomputers.com/...moving_Malware
> >>
> >> When all else fails, HijackThis v2.0.2
> >> (http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use.
> >> It will help you to both identify and remove any hijackware/spyware with
> >> assistance from an expert. **Post your log to
> >> http://aumha.net/viewforum.php?f=30,
> >> http://forums.spybot.info/forumdisplay.php?f=22,
> >> http://castlecops.com/forum67.html, or other appropriate forums for
> >> review
> >> by an expert in such matters, not here.**
> >>
> >> If the procedures look too complex - and there is no shame in admitting
> >> this isn't your cup of tea - take the machine to a local, reputable and
> >> independent (i.e., not BigBoxStoreUSA) computer repair shop.
> >> --
> >> ~Robear Dyer (PA Bear)
> >> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
> >> AumHa VSOP & Admin http://aumha.net
> >> DTS-L http://dts-l.net/
> >>
> >>
> >>
> >> JHL wrote:
> >>> I'll upgrade to sp2 or sp3 this weekend. I thought I had all the
> >>> updates
> >>> installed until I found out about sp3 recently, then found out there was
> >>> sp2. I don't know where I missed it.
> >>>
> >>> So, the router isn't giving me protection?
> >>>
> >>> "PA Bear [MS MVP]" wrote:
> >>>
> >>>> You've got more immediate issues to attend to, JHL:
> >>>>
> >>>> The ICF firewall in WinXP SP1 is not nearly as robust as the Windos
> >>>> Firewall in WinXP SP2/SP3! See
> >>>> http://technet.microsoft.com/en-us/bb457156.aspx
> >>>>
> >>>> Your computer remains vulnerable to thousands of security exploits
> >>>> without
> >>>> being fully patched! Get on this right way!
> >>>>
> >>>> [All anti-virus applications are third-party.]
> >>>>
> >>>> Protect Your PC!
> >>>> http://www.microsoft.com/athome/secu...r/default.mspx
> >>>>
> >>>> Learn how to protect your PC by taking three simple steps
> >>>> http://www.microsoft.com/downloads/d...6-602954130D38
> >>>> --
> >>>> ~Robear Dyer (PA Bear)
> >>>> MS MVP-IE, Mail, Security, Windows Desktop Experience - since 2002
> >>>> AumHa VSOP & Admin http://aumha.net
> >>>> DTS-L http://dts-l.net/
> >>>>
> >>>>
> >>>> JHL wrote:
> >>>>> Hello,
> >>>>> Using XP Home SP1, have a wired-router b/w cable modem and PC
> >>>>>
> >>>>> I’m considering switching to the Windows XP Home supplied firewall and
> >>>>> a
> >>>>> 3rd
> >>>>> party AV (free) program. I have been a ZA user (both free and paid
> >>>>> versions) and need some advice. I switched to the Windows FW and went
> >>>>> to
> >>>>> the Shield Up site to see what it says about my PC. All but port 113
> >>>>> was
> >>>>> closed, the rest of my PC ports were stealth.
> >>>>>
> >>>>> How do I close or stealth/hide this port using the Windows FW?
> >>>>>
> >>>>> Thanks
> >>>>> JHL
>
>