[Script Info]
Title: 
[Events]
Format: Layer, Start, End, Style, Name, MarginL, MarginR, MarginV, Effect, Text
Dialogue: 0,0:00:00.80,0:00:03.12,Default,,0000,0000,0000,,another tool that we'll use
Dialogue: 0,0:00:03.12,0:00:06.40,Default,,0000,0000,0000,,for managing our windows 10 security
Dialogue: 0,0:00:06.40,0:00:08.56,Default,,0000,0000,0000,,is going to be the windows firewall now
Dialogue: 0,0:00:08.56,0:00:10.08,Default,,0000,0000,0000,,just like windows defender we don't want
Dialogue: 0,0:00:10.08,0:00:12.32,Default,,0000,0000,0000,,this to be the only thing we're using
Dialogue: 0,0:00:12.32,0:00:15.36,Default,,0000,0000,0000,,we do want to use a windows firewall but
Dialogue: 0,0:00:15.36,0:00:17.68,Default,,0000,0000,0000,,we want other firewalls and other places
Dialogue: 0,0:00:17.68,0:00:19.20,Default,,0000,0000,0000,,on our network to provide overall
Dialogue: 0,0:00:19.20,0:00:21.04,Default,,0000,0000,0000,,network protection as well
Dialogue: 0,0:00:21.04,0:00:24.40,Default,,0000,0000,0000,,so this is not a
Dialogue: 0,0:00:24.64,0:00:28.08,Default,,0000,0000,0000,,solution to every firewalling issue
Dialogue: 0,0:00:28.08,0:00:31.44,Default,,0000,0000,0000,,but it is a good useful tool to have
Dialogue: 0,0:00:31.44,0:00:33.60,Default,,0000,0000,0000,,and you don't if at all possible we
Dialogue: 0,0:00:33.60,0:00:35.68,Default,,0000,0000,0000,,don't want to turn it off
Dialogue: 0,0:00:35.68,0:00:38.48,Default,,0000,0000,0000,,because we want that protection in case
Dialogue: 0,0:00:38.48,0:00:39.76,Default,,0000,0000,0000,,something gets through
Dialogue: 0,0:00:39.76,0:00:42.16,Default,,0000,0000,0000,,our network-based firewall so let's look
Dialogue: 0,0:00:42.16,0:00:44.56,Default,,0000,0000,0000,,at how we can manage it so i'm here
Dialogue: 0,0:00:44.56,0:00:45.60,Default,,0000,0000,0000,,under settings
Dialogue: 0,0:00:45.60,0:00:48.64,Default,,0000,0000,0000,,and update and security and then windows
Dialogue: 0,0:00:48.64,0:00:49.52,Default,,0000,0000,0000,,security
Dialogue: 0,0:00:49.52,0:00:51.68,Default,,0000,0000,0000,,and here is my firewall and network
Dialogue: 0,0:00:51.68,0:00:52.64,Default,,0000,0000,0000,,protection
Dialogue: 0,0:00:52.64,0:00:55.04,Default,,0000,0000,0000,,so i'm going to click on that and i'm
Dialogue: 0,0:00:55.04,0:00:56.08,Default,,0000,0000,0000,,going to have
Dialogue: 0,0:00:56.08,0:00:58.88,Default,,0000,0000,0000,,a simple way to deal with a firewall and
Dialogue: 0,0:00:58.88,0:01:00.48,Default,,0000,0000,0000,,then we call it windows firewall with
Dialogue: 0,0:01:00.48,0:01:02.24,Default,,0000,0000,0000,,advanced security for more detailed
Dialogue: 0,0:01:02.24,0:01:03.52,Default,,0000,0000,0000,,information
Dialogue: 0,0:01:03.52,0:01:05.52,Default,,0000,0000,0000,,so here is our firewall and network
Dialogue: 0,0:01:05.52,0:01:07.20,Default,,0000,0000,0000,,protection you see we have different
Dialogue: 0,0:01:07.20,0:01:09.20,Default,,0000,0000,0000,,domain pro or different network profiles
Dialogue: 0,0:01:09.20,0:01:11.20,Default,,0000,0000,0000,,the domain network the private network
Dialogue: 0,0:01:11.20,0:01:12.64,Default,,0000,0000,0000,,and the public network
Dialogue: 0,0:01:12.64,0:01:14.32,Default,,0000,0000,0000,,and then this right here tells me that
Dialogue: 0,0:01:14.32,0:01:16.16,Default,,0000,0000,0000,,i'm currently on the private network
Dialogue: 0,0:01:16.16,0:01:17.52,Default,,0000,0000,0000,,profile
Dialogue: 0,0:01:17.52,0:01:20.32,Default,,0000,0000,0000,,and currently the firewall is on now let
Dialogue: 0,0:01:20.32,0:01:21.76,Default,,0000,0000,0000,,me go ahead and click on that
Dialogue: 0,0:01:21.76,0:01:24.80,Default,,0000,0000,0000,,and i've got a couple of options here so
Dialogue: 0,0:01:24.80,0:01:27.76,Default,,0000,0000,0000,,i can turn off my firewall now i don't
Dialogue: 0,0:01:27.76,0:01:29.92,Default,,0000,0000,0000,,recommend doing this as a long-term
Dialogue: 0,0:01:29.92,0:01:30.72,Default,,0000,0000,0000,,solution
Dialogue: 0,0:01:30.72,0:01:33.12,Default,,0000,0000,0000,,but if you need to turn off the firewall
Dialogue: 0,0:01:33.12,0:01:34.64,Default,,0000,0000,0000,,while you're troubleshooting an issue
Dialogue: 0,0:01:34.64,0:01:36.96,Default,,0000,0000,0000,,that actually can be useful
Dialogue: 0,0:01:36.96,0:01:38.80,Default,,0000,0000,0000,,something's not working i'm trying i'm
Dialogue: 0,0:01:38.80,0:01:40.56,Default,,0000,0000,0000,,having a network connectivity issue let
Dialogue: 0,0:01:40.56,0:01:42.08,Default,,0000,0000,0000,,me turn off my firewall
Dialogue: 0,0:01:42.08,0:01:44.08,Default,,0000,0000,0000,,see if that fixes the problem now if
Dialogue: 0,0:01:44.08,0:01:46.08,Default,,0000,0000,0000,,that does i don't want to leave my
Dialogue: 0,0:01:46.08,0:01:46.80,Default,,0000,0000,0000,,firewall
Dialogue: 0,0:01:46.80,0:01:49.28,Default,,0000,0000,0000,,off but now i know there's a firewall
Dialogue: 0,0:01:49.28,0:01:51.36,Default,,0000,0000,0000,,setting that i'm going to need to adjust
Dialogue: 0,0:01:51.36,0:01:53.68,Default,,0000,0000,0000,,so i'm going to try to find that
Dialogue: 0,0:01:53.68,0:01:55.20,Default,,0000,0000,0000,,firewall setting so that i can
Dialogue: 0,0:01:55.20,0:01:57.68,Default,,0000,0000,0000,,bring my firewall back up but allow that
Dialogue: 0,0:01:57.68,0:01:59.04,Default,,0000,0000,0000,,particular application through the
Dialogue: 0,0:01:59.04,0:02:00.08,Default,,0000,0000,0000,,firewall
Dialogue: 0,0:02:00.08,0:02:03.36,Default,,0000,0000,0000,,so this turns it off
Dialogue: 0,0:02:03.36,0:02:06.56,Default,,0000,0000,0000,,and then back on and it's now paranoid
Dialogue: 0,0:02:06.56,0:02:08.64,Default,,0000,0000,0000,,because i turned his firewall off
Dialogue: 0,0:02:08.64,0:02:10.80,Default,,0000,0000,0000,,i'm going to turn his firewall back on
Dialogue: 0,0:02:10.80,0:02:12.24,Default,,0000,0000,0000,,that'll make it happy again
Dialogue: 0,0:02:12.24,0:02:15.28,Default,,0000,0000,0000,,okay now so this is this
Dialogue: 0,0:02:15.28,0:02:17.92,Default,,0000,0000,0000,,on or off all or nothing thing the other
Dialogue: 0,0:02:17.92,0:02:19.68,Default,,0000,0000,0000,,all or nothing thing is this one right
Dialogue: 0,0:02:19.68,0:02:20.64,Default,,0000,0000,0000,,here
Dialogue: 0,0:02:20.64,0:02:24.16,Default,,0000,0000,0000,,so a firewall will control data coming
Dialogue: 0,0:02:24.16,0:02:26.00,Default,,0000,0000,0000,,into your computer and data going
Dialogue: 0,0:02:26.00,0:02:28.40,Default,,0000,0000,0000,,out from your computer and by default
Dialogue: 0,0:02:28.40,0:02:30.32,Default,,0000,0000,0000,,windows firewall is going to allow
Dialogue: 0,0:02:30.32,0:02:32.72,Default,,0000,0000,0000,,some things going out block most things
Dialogue: 0,0:02:32.72,0:02:34.84,Default,,0000,0000,0000,,coming in unless they're specifically
Dialogue: 0,0:02:34.84,0:02:36.16,Default,,0000,0000,0000,,allowed
Dialogue: 0,0:02:36.16,0:02:38.80,Default,,0000,0000,0000,,what this does is this blocks all
Dialogue: 0,0:02:38.80,0:02:40.40,Default,,0000,0000,0000,,incoming connections
Dialogue: 0,0:02:40.40,0:02:41.44,Default,,0000,0000,0000,,and again this is going to be a
Dialogue: 0,0:02:41.44,0:02:43.04,Default,,0000,0000,0000,,temporary thing this is not permanent
Dialogue: 0,0:02:43.04,0:02:43.76,Default,,0000,0000,0000,,right
Dialogue: 0,0:02:43.76,0:02:47.36,Default,,0000,0000,0000,,so i'm down at starbucks
Dialogue: 0,0:02:47.36,0:02:49.44,Default,,0000,0000,0000,,i'm probably going to be on a public
Dialogue: 0,0:02:49.44,0:02:51.04,Default,,0000,0000,0000,,network not a private network but i'm
Dialogue: 0,0:02:51.04,0:02:52.64,Default,,0000,0000,0000,,down at starbucks
Dialogue: 0,0:02:52.64,0:02:56.24,Default,,0000,0000,0000,,and for some reason i i just think you
Dialogue: 0,0:02:56.24,0:02:57.52,Default,,0000,0000,0000,,know what i'm on the
Dialogue: 0,0:02:57.52,0:02:59.28,Default,,0000,0000,0000,,network i'm on the network i'm surfing
Dialogue: 0,0:02:59.28,0:03:01.60,Default,,0000,0000,0000,,the internet uh i'm working on a
Dialogue: 0,0:03:01.60,0:03:02.84,Default,,0000,0000,0000,,document
Dialogue: 0,0:03:02.84,0:03:05.52,Default,,0000,0000,0000,,but i really don't want
Dialogue: 0,0:03:05.52,0:03:07.84,Default,,0000,0000,0000,,any access to my computer across this
Dialogue: 0,0:03:07.84,0:03:08.64,Default,,0000,0000,0000,,network
Dialogue: 0,0:03:08.64,0:03:11.12,Default,,0000,0000,0000,,so i can come in here and say just block
Dialogue: 0,0:03:11.12,0:03:12.56,Default,,0000,0000,0000,,all incoming connections
Dialogue: 0,0:03:12.56,0:03:14.08,Default,,0000,0000,0000,,including those who would otherwise be
Dialogue: 0,0:03:14.08,0:03:16.00,Default,,0000,0000,0000,,allowed and that's just gonna you know
Dialogue: 0,0:03:16.00,0:03:17.52,Default,,0000,0000,0000,,slam the door shut
Dialogue: 0,0:03:17.52,0:03:21.68,Default,,0000,0000,0000,,so when we turn off windows defender you
Dialogue: 0,0:03:21.68,0:03:22.56,Default,,0000,0000,0000,,know
Dialogue: 0,0:03:22.56,0:03:24.24,Default,,0000,0000,0000,,get rid of all the locks on the doors
Dialogue: 0,0:03:24.24,0:03:25.76,Default,,0000,0000,0000,,throw open the windows knock down the
Dialogue: 0,0:03:25.76,0:03:27.92,Default,,0000,0000,0000,,walls just let anybody come in
Dialogue: 0,0:03:27.92,0:03:30.00,Default,,0000,0000,0000,,this is the exact opposite go complete
Dialogue: 0,0:03:30.00,0:03:31.68,Default,,0000,0000,0000,,lockdown
Dialogue: 0,0:03:31.68,0:03:34.16,Default,,0000,0000,0000,,okay those are our two all or nothing
Dialogue: 0,0:03:34.16,0:03:35.84,Default,,0000,0000,0000,,options and we can do that for
Dialogue: 0,0:03:35.84,0:03:38.32,Default,,0000,0000,0000,,any one of these three profiles so i can
Dialogue: 0,0:03:38.32,0:03:40.48,Default,,0000,0000,0000,,send my public network i want to block
Dialogue: 0,0:03:40.48,0:03:42.80,Default,,0000,0000,0000,,all incoming connections while still
Dialogue: 0,0:03:42.80,0:03:44.72,Default,,0000,0000,0000,,leaving incoming connections allowed on
Dialogue: 0,0:03:44.72,0:03:46.00,Default,,0000,0000,0000,,a private network that i trust
Dialogue: 0,0:03:46.00,0:03:49.20,Default,,0000,0000,0000,,a little bit better all right now
Dialogue: 0,0:03:49.20,0:03:51.44,Default,,0000,0000,0000,,those are all or nothing most of the
Dialogue: 0,0:03:51.44,0:03:53.92,Default,,0000,0000,0000,,time we don't want all or nothing
Dialogue: 0,0:03:53.92,0:03:55.36,Default,,0000,0000,0000,,most of the time we're going to want
Dialogue: 0,0:03:55.36,0:03:57.36,Default,,0000,0000,0000,,specific things and that's
Dialogue: 0,0:03:57.36,0:04:00.32,Default,,0000,0000,0000,,here allow an app through the firewall
Dialogue: 0,0:04:00.32,0:04:02.24,Default,,0000,0000,0000,,so let me bring this up and this is
Dialogue: 0,0:04:02.24,0:04:02.96,Default,,0000,0000,0000,,going to show
Dialogue: 0,0:04:02.96,0:04:05.84,Default,,0000,0000,0000,,a bunch of apps that are already allowed
Dialogue: 0,0:04:05.84,0:04:07.76,Default,,0000,0000,0000,,through my firewall
Dialogue: 0,0:04:07.76,0:04:09.84,Default,,0000,0000,0000,,and so you'll see the list of apps here
Dialogue: 0,0:04:09.84,0:04:11.36,Default,,0000,0000,0000,,and a bunch of these are going to be
Dialogue: 0,0:04:11.36,0:04:12.16,Default,,0000,0000,0000,,microsoft
Dialogue: 0,0:04:12.16,0:04:14.08,Default,,0000,0000,0000,,apps but there are some of them that are
Dialogue: 0,0:04:14.08,0:04:16.00,Default,,0000,0000,0000,,not going to be microsoft apps
Dialogue: 0,0:04:16.00,0:04:18.32,Default,,0000,0000,0000,,like i have packet tracer installed on
Dialogue: 0,0:04:18.32,0:04:19.20,Default,,0000,0000,0000,,my system
Dialogue: 0,0:04:19.20,0:04:22.00,Default,,0000,0000,0000,,and so packet tracer created a rule for
Dialogue: 0,0:04:22.00,0:04:22.88,Default,,0000,0000,0000,,the firewall
Dialogue: 0,0:04:22.88,0:04:25.44,Default,,0000,0000,0000,,and it said hey go ahead and allow this
Dialogue: 0,0:04:25.44,0:04:27.52,Default,,0000,0000,0000,,and i didn't do that right when i
Dialogue: 0,0:04:27.52,0:04:29.36,Default,,0000,0000,0000,,installed the software the software did
Dialogue: 0,0:04:29.36,0:04:29.68,Default,,0000,0000,0000,,that
Dialogue: 0,0:04:29.68,0:04:32.24,Default,,0000,0000,0000,,for me so that actually makes this
Dialogue: 0,0:04:32.24,0:04:33.68,Default,,0000,0000,0000,,easier to work with but if for some
Dialogue: 0,0:04:33.68,0:04:34.96,Default,,0000,0000,0000,,reason
Dialogue: 0,0:04:34.96,0:04:36.96,Default,,0000,0000,0000,,i decide that there's an app that i
Dialogue: 0,0:04:36.96,0:04:38.40,Default,,0000,0000,0000,,don't want access to
Dialogue: 0,0:04:38.40,0:04:40.80,Default,,0000,0000,0000,,after all then i can come in here and i
Dialogue: 0,0:04:40.80,0:04:42.24,Default,,0000,0000,0000,,can change that
Dialogue: 0,0:04:42.24,0:04:44.16,Default,,0000,0000,0000,,so we'll do that by going to change
Dialogue: 0,0:04:44.16,0:04:46.08,Default,,0000,0000,0000,,settings and let's look at this one
Dialogue: 0,0:04:46.08,0:04:46.56,Default,,0000,0000,0000,,right here
Dialogue: 0,0:04:46.56,0:04:49.36,Default,,0000,0000,0000,,paint 3d so paint 3d is currently
Dialogue: 0,0:04:49.36,0:04:51.04,Default,,0000,0000,0000,,allowed for both the private and the
Dialogue: 0,0:04:51.04,0:04:52.40,Default,,0000,0000,0000,,public network
Dialogue: 0,0:04:52.40,0:04:54.40,Default,,0000,0000,0000,,now if i want to change which networks
Dialogue: 0,0:04:54.40,0:04:56.32,Default,,0000,0000,0000,,it's allowed on i can just
Dialogue: 0,0:04:56.32,0:04:58.72,Default,,0000,0000,0000,,click that and uncheck or check those
Dialogue: 0,0:04:58.72,0:05:01.20,Default,,0000,0000,0000,,boxes if i want to turn it off entirely
Dialogue: 0,0:05:01.20,0:05:03.68,Default,,0000,0000,0000,,i check the box over here pretty
Dialogue: 0,0:05:03.68,0:05:05.28,Default,,0000,0000,0000,,straightforward
Dialogue: 0,0:05:05.28,0:05:07.84,Default,,0000,0000,0000,,if i don't see the app in here that i
Dialogue: 0,0:05:07.84,0:05:09.44,Default,,0000,0000,0000,,want so let's say i'm having a problem
Dialogue: 0,0:05:09.44,0:05:11.84,Default,,0000,0000,0000,,with a particular application connecting
Dialogue: 0,0:05:11.84,0:05:12.96,Default,,0000,0000,0000,,through my network
Dialogue: 0,0:05:12.96,0:05:14.72,Default,,0000,0000,0000,,i've proven that because i turned off
Dialogue: 0,0:05:14.72,0:05:16.40,Default,,0000,0000,0000,,the firewall and it worked fine turned
Dialogue: 0,0:05:16.40,0:05:18.48,Default,,0000,0000,0000,,the firewall back on it stopped working
Dialogue: 0,0:05:18.48,0:05:20.24,Default,,0000,0000,0000,,okay so that told me where the problem
Dialogue: 0,0:05:20.24,0:05:22.32,Default,,0000,0000,0000,,was so now what i can do
Dialogue: 0,0:05:22.32,0:05:25.60,Default,,0000,0000,0000,,is i can come in and add another app
Dialogue: 0,0:05:25.60,0:05:28.40,Default,,0000,0000,0000,,so i allow my other app i browse to
Dialogue: 0,0:05:28.40,0:05:30.32,Default,,0000,0000,0000,,wherever it is blah blah blah i find my
Dialogue: 0,0:05:30.32,0:05:32.24,Default,,0000,0000,0000,,app i'm already in packet tracer go to
Dialogue: 0,0:05:32.24,0:05:33.68,Default,,0000,0000,0000,,click that just for the fun of it
Dialogue: 0,0:05:33.68,0:05:35.12,Default,,0000,0000,0000,,so i'm going to pack a tracer and then
Dialogue: 0,0:05:35.12,0:05:36.96,Default,,0000,0000,0000,,i'm going to choose network types public
Dialogue: 0,0:05:36.96,0:05:39.20,Default,,0000,0000,0000,,or private network
Dialogue: 0,0:05:39.20,0:05:41.36,Default,,0000,0000,0000,,and then go and cancel that because i
Dialogue: 0,0:05:41.36,0:05:42.64,Default,,0000,0000,0000,,don't need it
Dialogue: 0,0:05:42.64,0:05:46.56,Default,,0000,0000,0000,,that will add that executable to
Dialogue: 0,0:05:46.56,0:05:49.20,Default,,0000,0000,0000,,this particular firewall rules to allow
Dialogue: 0,0:05:49.20,0:05:49.68,Default,,0000,0000,0000,,them
Dialogue: 0,0:05:49.68,0:05:53.12,Default,,0000,0000,0000,,out either public or private networks
Dialogue: 0,0:05:53.12,0:05:55.68,Default,,0000,0000,0000,,so this is the easy way to manage it
Dialogue: 0,0:05:55.68,0:05:57.92,Default,,0000,0000,0000,,this is not the detailed way
Dialogue: 0,0:05:57.92,0:06:00.96,Default,,0000,0000,0000,,this it does it based on application
Dialogue: 0,0:06:00.96,0:06:03.68,Default,,0000,0000,0000,,not on specific port number now if we
Dialogue: 0,0:06:03.68,0:06:06.08,Default,,0000,0000,0000,,want it on specific port number
Dialogue: 0,0:06:06.08,0:06:08.16,Default,,0000,0000,0000,,and i want more detailed settings that's
Dialogue: 0,0:06:08.16,0:06:09.68,Default,,0000,0000,0000,,where i go to
Dialogue: 0,0:06:09.68,0:06:12.32,Default,,0000,0000,0000,,my advanced settings so i'm going to
Dialogue: 0,0:06:12.32,0:06:15.28,Default,,0000,0000,0000,,click my advanced settings
Dialogue: 0,0:06:15.28,0:06:19.20,Default,,0000,0000,0000,,and here is my windows firewall with
Dialogue: 0,0:06:19.20,0:06:21.60,Default,,0000,0000,0000,,advanced security
Dialogue: 0,0:06:21.60,0:06:23.44,Default,,0000,0000,0000,,now over here i've got different types
Dialogue: 0,0:06:23.44,0:06:25.04,Default,,0000,0000,0000,,of rules inbound rules
Dialogue: 0,0:06:25.04,0:06:27.36,Default,,0000,0000,0000,,outbound rules connection security rules
Dialogue: 0,0:06:27.36,0:06:29.44,Default,,0000,0000,0000,,here's my little overview
Dialogue: 0,0:06:29.44,0:06:32.64,Default,,0000,0000,0000,,and specific actions i can take so for
Dialogue: 0,0:06:32.64,0:06:34.56,Default,,0000,0000,0000,,each of these profiles
Dialogue: 0,0:06:34.56,0:06:36.56,Default,,0000,0000,0000,,the windows defender firewall is on
Dialogue: 0,0:06:36.56,0:06:37.60,Default,,0000,0000,0000,,inbound connections
Dialogue: 0,0:06:37.60,0:06:39.68,Default,,0000,0000,0000,,do not match rule are blocked outbound
Dialogue: 0,0:06:39.68,0:06:41.28,Default,,0000,0000,0000,,connections do not match rule are
Dialogue: 0,0:06:41.28,0:06:42.16,Default,,0000,0000,0000,,allowed
Dialogue: 0,0:06:42.16,0:06:44.16,Default,,0000,0000,0000,,now obviously i can change these however
Dialogue: 0,0:06:44.16,0:06:46.08,Default,,0000,0000,0000,,i want as well by going to windows
Dialogue: 0,0:06:46.08,0:06:48.48,Default,,0000,0000,0000,,defender firewall properties
Dialogue: 0,0:06:48.48,0:06:50.40,Default,,0000,0000,0000,,and so then for let me go to my public
Dialogue: 0,0:06:50.40,0:06:52.96,Default,,0000,0000,0000,,profile and from my public profile i can
Dialogue: 0,0:06:52.96,0:06:53.76,Default,,0000,0000,0000,,say
Dialogue: 0,0:06:53.76,0:06:56.00,Default,,0000,0000,0000,,firewall state is on inbound connections
Dialogue: 0,0:06:56.00,0:06:57.20,Default,,0000,0000,0000,,blocked by default
Dialogue: 0,0:06:57.20,0:06:59.04,Default,,0000,0000,0000,,outbound connections i'm going to block
Dialogue: 0,0:06:59.04,0:07:00.88,Default,,0000,0000,0000,,outbound connections
Dialogue: 0,0:07:00.88,0:07:02.56,Default,,0000,0000,0000,,now obviously i don't want to actually
Dialogue: 0,0:07:02.56,0:07:04.64,Default,,0000,0000,0000,,do that but
Dialogue: 0,0:07:04.64,0:07:06.80,Default,,0000,0000,0000,,if i did want to you know completely
Dialogue: 0,0:07:06.80,0:07:08.88,Default,,0000,0000,0000,,block any access
Dialogue: 0,0:07:08.88,0:07:12.72,Default,,0000,0000,0000,,to this uh in or out of this computer
Dialogue: 0,0:07:12.72,0:07:14.16,Default,,0000,0000,0000,,while i'm on that public network that
Dialogue: 0,0:07:14.16,0:07:15.44,Default,,0000,0000,0000,,would be a way to do it this is going to
Dialogue: 0,0:07:15.44,0:07:17.12,Default,,0000,0000,0000,,block my outbound connections
Dialogue: 0,0:07:17.12,0:07:19.12,Default,,0000,0000,0000,,so nothing originating on my computer
Dialogue: 0,0:07:19.12,0:07:20.80,Default,,0000,0000,0000,,going out will work
Dialogue: 0,0:07:20.80,0:07:22.88,Default,,0000,0000,0000,,and then on my inbound connections i can
Dialogue: 0,0:07:22.88,0:07:24.00,Default,,0000,0000,0000,,block default
Dialogue: 0,0:07:24.00,0:07:26.08,Default,,0000,0000,0000,,block all connections or allow all
Dialogue: 0,0:07:26.08,0:07:27.28,Default,,0000,0000,0000,,connections
Dialogue: 0,0:07:27.28,0:07:29.84,Default,,0000,0000,0000,,allow all connections no security block
Dialogue: 0,0:07:29.84,0:07:30.88,Default,,0000,0000,0000,,all connections
Dialogue: 0,0:07:30.88,0:07:33.04,Default,,0000,0000,0000,,at this point i would go into complete
Dialogue: 0,0:07:33.04,0:07:34.32,Default,,0000,0000,0000,,isolation mode
Dialogue: 0,0:07:34.32,0:07:35.84,Default,,0000,0000,0000,,let me go and apply that because i'm not
Dialogue: 0,0:07:35.84,0:07:37.68,Default,,0000,0000,0000,,on this network anyway
Dialogue: 0,0:07:37.68,0:07:40.32,Default,,0000,0000,0000,,and we'll see right here windows
Dialogue: 0,0:07:40.32,0:07:42.40,Default,,0000,0000,0000,,defender firewall is on and we are
Dialogue: 0,0:07:42.40,0:07:43.04,Default,,0000,0000,0000,,blocking
Dialogue: 0,0:07:43.04,0:07:45.20,Default,,0000,0000,0000,,everything so if i ever switch my
Dialogue: 0,0:07:45.20,0:07:47.60,Default,,0000,0000,0000,,network profile to public
Dialogue: 0,0:07:47.60,0:07:50.24,Default,,0000,0000,0000,,it's my firewall goes into complete
Dialogue: 0,0:07:50.24,0:07:51.76,Default,,0000,0000,0000,,lockdown
Dialogue: 0,0:07:51.76,0:07:54.72,Default,,0000,0000,0000,,so let me go to
Dialogue: 0,0:07:56.88,0:07:59.04,Default,,0000,0000,0000,,get my right profile here again to reset
Dialogue: 0,0:07:59.04,0:08:01.28,Default,,0000,0000,0000,,that
Dialogue: 0,0:08:02.64,0:08:07.52,Default,,0000,0000,0000,,okay so those are very very similar to
Dialogue: 0,0:08:07.52,0:08:08.96,Default,,0000,0000,0000,,some of the things we were looking at
Dialogue: 0,0:08:08.96,0:08:11.20,Default,,0000,0000,0000,,when we were looking at the basic setup
Dialogue: 0,0:08:11.20,0:08:13.28,Default,,0000,0000,0000,,view and create firewall rules all right
Dialogue: 0,0:08:13.28,0:08:14.72,Default,,0000,0000,0000,,let's take a look at our inbound and
Dialogue: 0,0:08:14.72,0:08:16.72,Default,,0000,0000,0000,,outbound rules inbound rules impact
Dialogue: 0,0:08:16.72,0:08:17.52,Default,,0000,0000,0000,,traffic coming
Dialogue: 0,0:08:17.52,0:08:19.92,Default,,0000,0000,0000,,in outbound rules impact traffic going
Dialogue: 0,0:08:19.92,0:08:22.32,Default,,0000,0000,0000,,out let's start with inbound rules
Dialogue: 0,0:08:22.32,0:08:24.72,Default,,0000,0000,0000,,here are all of my inbound rules let me
Dialogue: 0,0:08:24.72,0:08:26.40,Default,,0000,0000,0000,,go and maximize this give us a little
Dialogue: 0,0:08:26.40,0:08:28.32,Default,,0000,0000,0000,,more real estate here
Dialogue: 0,0:08:28.32,0:08:30.32,Default,,0000,0000,0000,,so let's take a look at this packet
Dialogue: 0,0:08:30.32,0:08:32.00,Default,,0000,0000,0000,,tracer executable
Dialogue: 0,0:08:32.00,0:08:34.32,Default,,0000,0000,0000,,what profile we're looking at is an
Dialogue: 0,0:08:34.32,0:08:35.36,Default,,0000,0000,0000,,enabled
Dialogue: 0,0:08:35.36,0:08:38.24,Default,,0000,0000,0000,,what action does it take block or allow
Dialogue: 0,0:08:38.24,0:08:40.00,Default,,0000,0000,0000,,what program does it entail
Dialogue: 0,0:08:40.00,0:08:41.52,Default,,0000,0000,0000,,what's the local address what's the
Dialogue: 0,0:08:41.52,0:08:43.76,Default,,0000,0000,0000,,remote address
Dialogue: 0,0:08:43.76,0:08:46.16,Default,,0000,0000,0000,,and then as we scroll over what protocol
Dialogue: 0,0:08:46.16,0:08:47.92,Default,,0000,0000,0000,,what port number what remote
Dialogue: 0,0:08:47.92,0:08:49.60,Default,,0000,0000,0000,,port local and remote port number are
Dialogue: 0,0:08:49.60,0:08:51.52,Default,,0000,0000,0000,,there any authorized users or computers
Dialogue: 0,0:08:51.52,0:08:52.32,Default,,0000,0000,0000,,or
Dialogue: 0,0:08:52.32,0:08:53.84,Default,,0000,0000,0000,,as you can tell these can get fairly
Dialogue: 0,0:08:53.84,0:08:56.08,Default,,0000,0000,0000,,detailed maybe the best way to look at
Dialogue: 0,0:08:56.08,0:08:56.48,Default,,0000,0000,0000,,this
Dialogue: 0,0:08:56.48,0:08:58.00,Default,,0000,0000,0000,,is going to be to go and create a new
Dialogue: 0,0:08:58.00,0:08:59.60,Default,,0000,0000,0000,,rule so i'm going to come over here and
Dialogue: 0,0:08:59.60,0:09:00.16,Default,,0000,0000,0000,,click new
Dialogue: 0,0:09:00.16,0:09:03.52,Default,,0000,0000,0000,,new rule and i can do this based on a
Dialogue: 0,0:09:03.52,0:09:05.52,Default,,0000,0000,0000,,particular program a particular port
Dialogue: 0,0:09:05.52,0:09:07.60,Default,,0000,0000,0000,,number a predefined rule or a custom
Dialogue: 0,0:09:07.60,0:09:08.40,Default,,0000,0000,0000,,rule
Dialogue: 0,0:09:08.40,0:09:10.56,Default,,0000,0000,0000,,let me start with a port number let's
Dialogue: 0,0:09:10.56,0:09:12.08,Default,,0000,0000,0000,,say i want to allow
Dialogue: 0,0:09:12.08,0:09:15.76,Default,,0000,0000,0000,,port 25 for smtp connections
Dialogue: 0,0:09:15.76,0:09:17.92,Default,,0000,0000,0000,,in only be relevant if i'm running a
Dialogue: 0,0:09:17.92,0:09:19.44,Default,,0000,0000,0000,,mail server i'm not but
Dialogue: 0,0:09:19.44,0:09:20.72,Default,,0000,0000,0000,,we're not going to save the rule anyway
Dialogue: 0,0:09:20.72,0:09:22.80,Default,,0000,0000,0000,,so let's click on we're going to do a
Dialogue: 0,0:09:22.80,0:09:25.36,Default,,0000,0000,0000,,port rule and we're going to go next
Dialogue: 0,0:09:25.36,0:09:28.56,Default,,0000,0000,0000,,is this going to be a tcp or udp port as
Dialogue: 0,0:09:28.56,0:09:29.20,Default,,0000,0000,0000,,you can tell
Dialogue: 0,0:09:29.20,0:09:30.96,Default,,0000,0000,0000,,right away in order to do this you need
Dialogue: 0,0:09:30.96,0:09:32.40,Default,,0000,0000,0000,,to know which port numbers you're
Dialogue: 0,0:09:32.40,0:09:33.76,Default,,0000,0000,0000,,working with what protocols you're
Dialogue: 0,0:09:33.76,0:09:34.96,Default,,0000,0000,0000,,working with
Dialogue: 0,0:09:34.96,0:09:38.00,Default,,0000,0000,0000,,so this for a mail server is going to be
Dialogue: 0,0:09:38.00,0:09:39.92,Default,,0000,0000,0000,,tcp port 25
Dialogue: 0,0:09:39.92,0:09:42.00,Default,,0000,0000,0000,,so i'm going to specify port 25 i really
Dialogue: 0,0:09:42.00,0:09:43.76,Default,,0000,0000,0000,,don't want to specify all local ports
Dialogue: 0,0:09:43.76,0:09:45.84,Default,,0000,0000,0000,,that's opening things up way too much
Dialogue: 0,0:09:45.84,0:09:47.92,Default,,0000,0000,0000,,and notice i can set up more than one
Dialogue: 0,0:09:47.92,0:09:49.68,Default,,0000,0000,0000,,port here you see their examples
Dialogue: 0,0:09:49.68,0:09:51.76,Default,,0000,0000,0000,,separated by commas or a dash for a
Dialogue: 0,0:09:51.76,0:09:52.56,Default,,0000,0000,0000,,range
Dialogue: 0,0:09:52.56,0:09:56.16,Default,,0000,0000,0000,,i'm going to do port 25 and then
Dialogue: 0,0:09:56.16,0:09:57.92,Default,,0000,0000,0000,,i have three options here i can allow
Dialogue: 0,0:09:57.92,0:09:59.28,Default,,0000,0000,0000,,the connection allow
Dialogue: 0,0:09:59.28,0:10:02.56,Default,,0000,0000,0000,,only if it's secure so these are ipsec
Dialogue: 0,0:10:02.56,0:10:03.60,Default,,0000,0000,0000,,connections
Dialogue: 0,0:10:03.60,0:10:07.28,Default,,0000,0000,0000,,or i can block the connection now
Dialogue: 0,0:10:07.28,0:10:09.92,Default,,0000,0000,0000,,blocking connections is kind of weird
Dialogue: 0,0:10:09.92,0:10:11.68,Default,,0000,0000,0000,,normally you don't need to block
Dialogue: 0,0:10:11.68,0:10:12.88,Default,,0000,0000,0000,,connections
Dialogue: 0,0:10:12.88,0:10:14.96,Default,,0000,0000,0000,,you just don't allow it if it's not
Dialogue: 0,0:10:14.96,0:10:16.80,Default,,0000,0000,0000,,allowed it's blocked
Dialogue: 0,0:10:16.80,0:10:18.72,Default,,0000,0000,0000,,but sometimes you'll have another rule
Dialogue: 0,0:10:18.72,0:10:22.00,Default,,0000,0000,0000,,somewhere that's allowing something
Dialogue: 0,0:10:22.00,0:10:24.32,Default,,0000,0000,0000,,and this particular type of traffic is
Dialogue: 0,0:10:24.32,0:10:25.76,Default,,0000,0000,0000,,part of what's being allowed
Dialogue: 0,0:10:25.76,0:10:27.68,Default,,0000,0000,0000,,but you really don't want this in that
Dialogue: 0,0:10:27.68,0:10:29.04,Default,,0000,0000,0000,,case you might need to use
Dialogue: 0,0:10:29.04,0:10:32.16,Default,,0000,0000,0000,,a block rule but your better option is
Dialogue: 0,0:10:32.16,0:10:32.48,Default,,0000,0000,0000,,to
Dialogue: 0,0:10:32.48,0:10:34.72,Default,,0000,0000,0000,,only create rules for the data that you
Dialogue: 0,0:10:34.72,0:10:35.60,Default,,0000,0000,0000,,want allowed
Dialogue: 0,0:10:35.60,0:10:36.96,Default,,0000,0000,0000,,and just let everything else be
Dialogue: 0,0:10:36.96,0:10:38.64,Default,,0000,0000,0000,,automatically blocked
Dialogue: 0,0:10:38.64,0:10:40.08,Default,,0000,0000,0000,,so i'm going to allow this because i'm
Dialogue: 0,0:10:40.08,0:10:42.40,Default,,0000,0000,0000,,going to be running a local mail server
Dialogue: 0,0:10:42.40,0:10:45.28,Default,,0000,0000,0000,,and then what profile do these apply to
Dialogue: 0,0:10:45.28,0:10:47.20,Default,,0000,0000,0000,,domain private public
Dialogue: 0,0:10:47.20,0:10:49.76,Default,,0000,0000,0000,,and i'm only going to run this when i'm
Dialogue: 0,0:10:49.76,0:10:51.52,Default,,0000,0000,0000,,on a domain network
Dialogue: 0,0:10:51.52,0:10:54.00,Default,,0000,0000,0000,,and click next and then i'm going to set
Dialogue: 0,0:10:54.00,0:10:55.60,Default,,0000,0000,0000,,the name in the description for the rule
Dialogue: 0,0:10:55.60,0:10:56.88,Default,,0000,0000,0000,,and click finish and that will
Dialogue: 0,0:10:56.88,0:10:59.20,Default,,0000,0000,0000,,create the rule for me i'm going to
Dialogue: 0,0:10:59.20,0:11:00.40,Default,,0000,0000,0000,,cancel that because i don't want to
Dialogue: 0,0:11:00.40,0:11:01.68,Default,,0000,0000,0000,,actually do that
Dialogue: 0,0:11:01.68,0:11:03.44,Default,,0000,0000,0000,,let's open up another rule here so that
Dialogue: 0,0:11:03.44,0:11:06.40,Default,,0000,0000,0000,,we can look at once we get it created
Dialogue: 0,0:11:06.40,0:11:08.08,Default,,0000,0000,0000,,this is going to be all the details for
Dialogue: 0,0:11:08.08,0:11:09.76,Default,,0000,0000,0000,,it so this is a
Dialogue: 0,0:11:09.76,0:11:12.08,Default,,0000,0000,0000,,rule 4 packet tracer so we got the name
Dialogue: 0,0:11:12.08,0:11:13.52,Default,,0000,0000,0000,,of it the description whether it's
Dialogue: 0,0:11:13.52,0:11:14.00,Default,,0000,0000,0000,,enabled
Dialogue: 0,0:11:14.00,0:11:16.16,Default,,0000,0000,0000,,or not what it does it allows the
Dialogue: 0,0:11:16.16,0:11:17.28,Default,,0000,0000,0000,,connection
Dialogue: 0,0:11:17.28,0:11:19.44,Default,,0000,0000,0000,,we can look at the programs and services
Dialogue: 0,0:11:19.44,0:11:21.44,Default,,0000,0000,0000,,that are allowed to use this
Dialogue: 0,0:11:21.44,0:11:23.92,Default,,0000,0000,0000,,and then any remote computers are there
Dialogue: 0,0:11:23.92,0:11:26.16,Default,,0000,0000,0000,,only specific computers that we want
Dialogue: 0,0:11:26.16,0:11:29.04,Default,,0000,0000,0000,,are we going to make exceptions so by
Dialogue: 0,0:11:29.04,0:11:30.96,Default,,0000,0000,0000,,default it's going to allow anything
Dialogue: 0,0:11:30.96,0:11:33.60,Default,,0000,0000,0000,,but i can say you know what only allow
Dialogue: 0,0:11:33.60,0:11:35.60,Default,,0000,0000,0000,,these specific computers
Dialogue: 0,0:11:35.60,0:11:38.32,Default,,0000,0000,0000,,or skip this rule for these specific
Dialogue: 0,0:11:38.32,0:11:39.12,Default,,0000,0000,0000,,computers
Dialogue: 0,0:11:39.12,0:11:40.64,Default,,0000,0000,0000,,so i want packages to work with
Dialogue: 0,0:11:40.64,0:11:42.32,Default,,0000,0000,0000,,everybody except
Dialogue: 0,0:11:42.32,0:11:44.00,Default,,0000,0000,0000,,and then i can specify my specific
Dialogue: 0,0:11:44.00,0:11:46.08,Default,,0000,0000,0000,,exceptions you can also identify
Dialogue: 0,0:11:46.08,0:11:46.80,Default,,0000,0000,0000,,specific
Dialogue: 0,0:11:46.80,0:11:50.08,Default,,0000,0000,0000,,uh protocols and ports so what if i
Dialogue: 0,0:11:50.08,0:11:52.16,Default,,0000,0000,0000,,don't want packet tracer to use
Dialogue: 0,0:11:52.16,0:11:55.12,Default,,0000,0000,0000,,all ports well i could specify specific
Dialogue: 0,0:11:55.12,0:11:56.64,Default,,0000,0000,0000,,ports it would be allowed to use
Dialogue: 0,0:11:56.64,0:11:58.56,Default,,0000,0000,0000,,obviously i'd have to modify the rule
Dialogue: 0,0:11:58.56,0:11:59.76,Default,,0000,0000,0000,,but
Dialogue: 0,0:11:59.76,0:12:02.88,Default,,0000,0000,0000,,um you see here where we can set it
Dialogue: 0,0:12:02.88,0:12:05.36,Default,,0000,0000,0000,,we can set the scope so local ip
Dialogue: 0,0:12:05.36,0:12:07.20,Default,,0000,0000,0000,,addresses remote ip addresses that we're
Dialogue: 0,0:12:07.20,0:12:08.56,Default,,0000,0000,0000,,going to be connecting to
Dialogue: 0,0:12:08.56,0:12:10.96,Default,,0000,0000,0000,,so i can say only allow packet tracer to
Dialogue: 0,0:12:10.96,0:12:12.56,Default,,0000,0000,0000,,connect to specific remote i p
Dialogue: 0,0:12:12.56,0:12:15.76,Default,,0000,0000,0000,,addresses rather than any of them and
Dialogue: 0,0:12:15.76,0:12:16.32,Default,,0000,0000,0000,,then
Dialogue: 0,0:12:16.32,0:12:19.68,Default,,0000,0000,0000,,the profiles the interface types
Dialogue: 0,0:12:19.68,0:12:21.68,Default,,0000,0000,0000,,local principles are the specific users
Dialogue: 0,0:12:21.68,0:12:22.80,Default,,0000,0000,0000,,that are allowed to do this
Dialogue: 0,0:12:22.80,0:12:24.88,Default,,0000,0000,0000,,or not or are there remote users that
Dialogue: 0,0:12:24.88,0:12:26.96,Default,,0000,0000,0000,,are allowed to use this rule or not
Dialogue: 0,0:12:26.96,0:12:28.96,Default,,0000,0000,0000,,so you can see we can actually get very
Dialogue: 0,0:12:28.96,0:12:30.40,Default,,0000,0000,0000,,very precise
Dialogue: 0,0:12:30.40,0:12:33.68,Default,,0000,0000,0000,,in our windows firewall rules
Dialogue: 0,0:12:33.68,0:12:37.12,Default,,0000,0000,0000,,which is great because it gives us
Dialogue: 0,0:12:37.12,0:12:39.28,Default,,0000,0000,0000,,this screen with the windows firewall
Dialogue: 0,0:12:39.28,0:12:40.96,Default,,0000,0000,0000,,with advanced security which gives us
Dialogue: 0,0:12:40.96,0:12:42.64,Default,,0000,0000,0000,,very very detailed by the way
Dialogue: 0,0:12:42.64,0:12:44.48,Default,,0000,0000,0000,,outbound rules work basically the same
Dialogue: 0,0:12:44.48,0:12:46.08,Default,,0000,0000,0000,,way as inbound rules
Dialogue: 0,0:12:46.08,0:12:47.92,Default,,0000,0000,0000,,except that outbound rules filter
Dialogue: 0,0:12:47.92,0:12:49.20,Default,,0000,0000,0000,,traffic because it's leaving your
Dialogue: 0,0:12:49.20,0:12:50.32,Default,,0000,0000,0000,,computer
Dialogue: 0,0:12:50.32,0:12:52.48,Default,,0000,0000,0000,,inbound rules filter traffic is coming
Dialogue: 0,0:12:52.48,0:12:54.00,Default,,0000,0000,0000,,into your computer
Dialogue: 0,0:12:54.00,0:12:56.64,Default,,0000,0000,0000,,so these are probably the inbound rules
Dialogue: 0,0:12:56.64,0:12:57.84,Default,,0000,0000,0000,,are probably going to be your little
Dialogue: 0,0:12:57.84,0:12:58.40,Default,,0000,0000,0000,,more
Dialogue: 0,0:12:58.40,0:13:00.96,Default,,0000,0000,0000,,important ones but one of the nice
Dialogue: 0,0:13:00.96,0:13:03.28,Default,,0000,0000,0000,,things with windows defender firewall
Dialogue: 0,0:13:03.28,0:13:06.24,Default,,0000,0000,0000,,is that it does give you the ability to
Dialogue: 0,0:13:06.24,0:13:06.64,Default,,0000,0000,0000,,be
Dialogue: 0,0:13:06.64,0:13:08.64,Default,,0000,0000,0000,,very very detailed here if you're doing
Dialogue: 0,0:13:08.64,0:13:10.48,Default,,0000,0000,0000,,advanced security
Dialogue: 0,0:13:10.48,0:13:14.40,Default,,0000,0000,0000,,but using your basic options
Dialogue: 0,0:13:14.40,0:13:16.96,Default,,0000,0000,0000,,it still allows you to kind of customize
Dialogue: 0,0:13:16.96,0:13:18.32,Default,,0000,0000,0000,,your network protection
Dialogue: 0,0:13:18.32,0:13:20.56,Default,,0000,0000,0000,,your firewall protection a little bit
Dialogue: 0,0:13:20.56,0:13:22.64,Default,,0000,0000,0000,,without being so overwhelming that
Dialogue: 0,0:13:22.64,0:13:25.04,Default,,0000,0000,0000,,somebody who's not comfortable with
Dialogue: 0,0:13:25.04,0:13:27.92,Default,,0000,0000,0000,,networking and firewalls is going to be
Dialogue: 0,0:13:27.92,0:13:28.80,Default,,0000,0000,0000,,overwhelmed
Dialogue: 0,0:13:28.80,0:13:32.64,Default,,0000,0000,0000,,and not do it