Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

asked 2022-05-17 12:10:44 +0000

ajaznawaz gravatar image

What to expect to see in capture file when Windows firewall is ON ..?

I am observing SYN, SYN-ACK, ACK, and the FIN-ACK. At the bottom of the trace is FIN-ACK retransmission.

I'm not a windows guy, but having checked it seems to be switched ON.

Two-way communication seems open given the source and destination IPs appear cap file.

I am suspecting that Windows firewall is allowing the handshake at Layer4, but blocks anything upwards (OSI) from there...

Any comments would be appreciated.

What to expect to see in capture file when Windows firewall is ON ..?

I am observing SYN, SYN-ACK, ACK, and the FIN-ACK. At the bottom of the trace is FIN-ACK retransmission.

I'm not a windows guy, but having checked it seems to be switched ON.

Two-way communication seems open given the source and destination IPs appear cap file.file. I also see a single TLSv1 "Client Hello" containing 517 bytes, but nothing returns back for that.

I am suspecting that Windows firewall is allowing the handshake at Layer4, but blocks anything upwards (OSI) from there...

Any comments would be appreciated.

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2