How to Configure Windows Firewall On a Run-Time Image (Windows Embedded Standard 2009)


There are two components associated with the Windows Firewall:

  • Windows Firewall and Internet Connection Sharing. This allows you to add, enable, and configure firewall protection;
  • Windows Firewall Control Panel. This provides a user interface on the device to view and change the settings.

You can install the Windows Firewall and Internet Connection Sharing component without Windows Firewall Control Panel. But if you install Windows Firewall Control Panel, you must install the Windows Firewall and Internet Connection Sharing component.

When you add the Windows Firewall and Internet Connection Sharing component, the default settings are:

  • Windows Firewall: On (recommended)
  • ICMP Settings: All incoming, outgoing, and redirect communications are off.
  • Authorized Applications: Remote Assistance is enabled.
  • Globally Open Ports: File and Print Sharing, and UPnP, are listed but disabled.

To track your progress in the following table, select the check box next to each step.

Step Topic

1. Add the Windows Firewall components to your configuration in Target Designer.

Adding the Windows Firewall Components to Your Configuration

2. (Optional) Configure any ICMP information sharing that you want to allow.

Configuring ICMP Settings in Windows Firewall

3. (Optional) Specify which programs you want to allow to run through ports.

Configuring Authorized Applications in Windows Firewall

4. (Optional) Configure ports to allow services through Windows Firewall.

Configuring Ports to Allow Services Through Windows Firewall

5. (Optional) Change the Windows Firewall configuration after it has been deployed to a device.

Windows Firewall Configuration On a Deployed Device

Community Additions