![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 12%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Defender | Other
Additional Microsoft Defender tools and services that provide security across various platforms and environments
For a typical non‑professional home user, the safest and simplest approach is to keep Windows Defender Firewall turned on with its default configuration and only make minimal changes when absolutely necessary.
Recommended settings:
- Keep the firewall on for all network types
- Open Windows Security (Start menu → search for Windows Security or use the shortcut: Windows Security).
- Go to Firewall & network protection.
- Ensure the firewall is On for:
- Domain network (if present)
- Private network (home network)
- Public network (coffee shops, hotels, etc.)
- Mark home Wi‑Fi as a Private network
- In Firewall & network protection, confirm that the home network is set to Private.
- Private networks allow trusted devices at home to see and connect to the PC (for things like file and printer sharing), while public networks are more restrictive.
- Prefer “allowed apps” over opening ports
- In Firewall & network protection, select Allow an app through firewall.
- Select Change settings (approve admin prompt).
- If an app needs network access and is blocked:
- Find it in the list and tick the appropriate boxes (usually Private; only tick Public if really needed).
- If it is not listed, choose Allow another app and browse to the program.
- Avoid using manual port opening. Opening ports is more risky because ports stay open all the time, while allowed apps only open what they need when they need it.
- Remove access that is no longer needed
- Periodically revisit Allow an app through firewall.
- Clear the check box for apps that are no longer used or no longer need network access.
- Do not allow unknown apps
- Never allow an app through the firewall if it is not recognized or trusted.
These defaults, combined with Windows Security’s integrated protection (Microsoft Defender Antivirus plus firewall), provide appropriate protection for a typical home user without complex tuning.
References: