In Windows XP, how do I configure the firewall to allow pings?

Windows XP comes with the Internet Connection Firewall (ICF), which is software that restricts communications from the Internet to your computer or network. For more information, see In Windows XP, how do I enable or disable the firewall?

Windows XP Service Pack 2 (SP2) installs the Windows Firewall, a more secure replacement for the ICF, and turns it on by default. For more information about Windows XP SP2, see What are service packs for Windows, and where can I get them?

If you have the ICF or the Windows Firewall enabled, ping requests are blocked by default. This prevents the Information Technology Security Office (ITSO) external system scanner from functioning. To configure the ICF or the Windows Firewall to allow pings, follow the appropriate instructions below.

Note: You will need administrative privileges to configure your Windows firewall software.

Note: At Indiana University, the University Information Security Office (UISO) recommends that you normally refrain from running your Windows computer as an administrator. For more, see What is the principle of least privilege?

Windows Firewall

1. From the Start menu, select either Control Panel, or Settings and then Control Panel. Click or double-click Network Connections to open the Network Connections window.
   
   
2. In the Network Connections window, right-click the icon for your primary Internet connection and select Properties. For example, if you connect using an Ethernet cable, right-click Local Area Connection; if you connect using VPN or dial-up, right-click the Virtual Private Network or Dial-up Connection.
   
   
3. On the Advanced tab, under "Windows Firewall", click Settings... .
   
   
4. The Windows Firewall panel will open. On the Advanced tab, under "ICMP", click Settings... .
   
   
5. The ICMP Settings window will open. Check the box next to Allow incoming echo request.
   
   
6. Click OK three times.

ICF

1. From the Start menu, select either Control Panel, or Settings and then Control Panel. Click or double-click Network Connections to open the Network Connections window.
   
   
2. In the Network Connections window, right-click the icon for your primary Internet connection and select Properties. For example, if you connect using an Ethernet cable, right-click Local Area Connection; if you connect using VPN or dial-up, right-click the Virtual Private Network or Dial-up Connection.
   
   
3. On the Advanced tab, click Settings... .
   
   
4. On the ICMP tab, check the box next to Allow incoming echo request.
   
   
5. Click OK twice.

Also see:

• Where can IU departments get help setting up a firewall or intrusion detection products?
• If I use a cable modem or DSL, how do I keep my computer secure?
• How can I have my IU-networked computer scanned for security vulnerabilities?
• What is a firewall?