How does win2008 prohibit P2P tool download? Advanced firewall to help out

In some office locations, some users will unconsciously use P2P tools to download some movies or other data in the LAN. This is a malicious download operation, which not only occupies the bandwidth resources in the LAN, but also causes The network in the LAN is unstable. In the win2008 system, how to prohibit the P2P tool download, in fact, can be achieved through the high security firewall that comes with the win2008 system.

Operation principle:

You can use the new advanced security firewall function of Win2008 system to control the malicious download behavior. Considering that the P2P tool performs malicious download operation, it will pass the system 3077. The 3078 port is used for external network communication. As long as the advanced security firewall function restricts the 3077 and 3078 ports from performing external network communication, it can prevent the Internet users from secretly using P2P tools such as Thunder to perform malicious download.

Specific steps:

1. Enter the Win2008 system desktop with system administrator privileges, and then click ““Start” menu> Programs>; “Administrative Tools&rdquo ;, “Server Manager” command, from the left side of the server manager window that appears afterwards, position the mouse on the "Configure" node option, and then select the "Advanced Security Firewall" under the target node option. “project;

2, open the "advanced security firewall" configuration interface, click on the left side of the interface, click the "outbound rules" function option, and then from the right of the corresponding function options At the side position, click the “New Rule” function option to open the Secure Outbound Rule Creation Wizard dialog box. When the wizard dialog asks us what type of control operation to perform, we should select the “Port” here. Option to allow the Advanced Security Firewall feature to restrict network connections on ports 3077 and 3078 on the local computer;

3. Click “Next” Button, in the wizard settings dialog box that appears, select the “TCP” function option, and select the "Specific local port" option, at this time "The specific local port" text box will be automatically activated in the text Enter the “3077, 3078” port number directly in the box,

4. After clicking the “Next” button, the wizard will pop up a prompt asking “What should I do when the connection meets the specified conditions” ; At this time, we must select the “Block Connection” option, and then set the specific application scope of the security rule. Here we can select both “Domain” and “Order” and “Public”. These application environments, finally set a suitable name for the newly created outbound rules, and then click the “Complete” button to end the creation of the secure outbound rules.

The above is to create a secure access rule through the advanced security firewall function of win2008 system. Users in any LAN will be blocked by the firewall security access rules when they try to download in win2008 system, which effectively protects them. The stability of the network in the LAN is a problem.