How to Activate and Customize

Windows Firewall in Windows Server VPS

Windows Firewall in Windows Server VPS is one of the most important built-in security tools. It acts as a barrier against unauthorized access and protects your server’s services and applications. In this guide, you’ll learn how to activate the firewall, create new rules, and secure RDP and IIS for maximum protection.

What is Windows Firewall in Windows Server VPS?

Windows Firewall is a built-in security feature that monitors both inbound and outbound traffic. It allows or blocks connections based on predefined rules.
By activating and configuring it properly, you can minimize security risks such as cyberattacks or unauthorized access.

How to Activate Windows Firewall in Windows Server

1. Using Windows Security

1. Open the Start menu and search for Windows Security.

2. Select Firewall & Network Protection.

3. Turn on Microsoft Defender Firewall.

2. Using Control Panel

1. Open the Control Panel.

2. Search for Firewall.

3. Choose Turn Windows Firewall on or off.

4. Enable it and click OK.

3. Using wf.msc Command

• Press Win + R, type wf.msc, and hit Enter.

• This opens the advanced firewall management console.

Creating New Rules in Windows Firewall

To allow or block traffic, you must create rules.

Steps:

1. Open Windows Firewall with Advanced Security.

2. Choose Inbound Rules or Outbound Rules.

3. Click New Rule.

4. Select the type:

   • Program

   • Port

   • Custom

5. Choose the protocol (TCP/UDP) and port number (e.g., 80 for HTTP).

6. Define the action: Allow or Block.

7. Select the network profile (Domain, Private, Public).

8. Name the rule and save it.

Allowing or Blocking Specific Ports

Ports are “doors” that services use to communicate:

• Port 80 → HTTP

• Port 443 → HTTPS

• Port 3389 → RDP

To open a port:

1. Go to Inbound Rules → New Rule.

2. Select Port.

3. Enter the port number (e.g., 443).

4. Choose Allow the connection.

5. Finish and save.

⚠️ Tip: Only open the ports you really need, and block all unused ones.

Securing RDP with Windows Firewall

Remote Desktop Protocol (RDP) is a common target for attacks. To secure it:

1. Change the default port (3389) to another one.

2. Allow connections only from specific IP addresses or via VPN.

3. Enable Network Level Authentication (NLA).

4. Use Multi-Factor Authentication (MFA) for extra security.

Securing IIS with Windows Firewall

When hosting websites with IIS (Internet Information Services):

1. Open ports 80 (HTTP) and 443 (HTTPS).

2. Create a custom rule to allow w3wp.exe (IIS worker process).

3. Add an extra layer of protection like a Web Application Firewall (WAF) to block SQL Injection, XSS, and other attacks.

Best Practices for Customizing Windows Firewall

• Set Deny All as default, then allow only what’s needed.

• Monitor firewall logs regularly.

• Restrict access to trusted IP ranges.

• Keep Windows Server and IIS updated to patch vulnerabilities.

Conclusion

Activating and customizing Windows Firewall in Windows Server VPS is essential for server security. By creating smart rules, controlling ports, and securing services like RDP and IIS, you can protect your VPS from threats and ensure stable, secure performance.

  هل تحتاج إلى Windows VPS سريع وآمن وبسعر مناسب؟
شركة EgyVPS بتوفرلك سيرفرات ويندوز جاهزة للاستخدام فورًا.
? تواصل معنا عبر: 201001197157
? أو زور موقعنا: https://egyvps.com