We are currently in the process of gradually updating all Avast Antivirus users to a new version of the Firewall feature. This article only applies if you already have the new version of Firewall.
To check which version of Firewall you currently have, open Avast Antivirus and go to Protection ▸ Firewall.
- If you see this screen, you have the new version of Firewall:
- Alternatively, if you see this screen, you still have the classic version of Firewall: You can find information about the classic version of Avast Firewall here.
We expect to update all users to the new Firewall before the end of October 2021. If you want to immediately start using the new Firewall, you can download the latest beta version of your Avast antivirus product via the Avast forum.
Access basic rules
Basic rules (previously known as System rules) are a range of Firewall rules that control network traffic for the most common connection types related to specific system capabilites.
To access the list of Basic rules:
- Open Avast Antivirus and go to Protection ▸ Firewall.
- Click Settings (the gear icon) in the top-right corner of the screen.
- Click View Firewall rules.
- Select the Basic rules tab.
The Basic rules screen allows you to enable or disable each rule separately for both available network profiles (Public and Private).
Configure basic rules
The following options are available on the Basic rules screen:
- Allow incoming file and printer sharing over SMB protocol: authorizes other PCs in the network to access shared folders and printers on your PC.
- Allow incoming remote desktop (RDP) connections: authorizes other PCs on your network to remotely access and control your PC when the remote desktop service is enabled.
- Allow incoming ping and trace requests: authorizes incoming Internet Control Message Protocol (ICMP). ICMP is typically used by system tools, such as ping or tracert, for diagnostic or control purposes when troubleshooting connectivity issues.
- Allow outgoing ping and trace requests: authorizes outgoing Internet Control Message Protocol (ICMP) messages. ICMP is typically used by system tools, such as ping or tracert commands, for diagnostic or control purposes when troubleshooting connectivity issues.
- Allow Domain Name System (DNS) traffic: authorizes communication with Domain Name Servers, which allows your PC to recognize the IP addresses of the websites you visit.
- Allow Dynamic Host Configuration (DHCP) traffic: authorizes communication using the Dynamic Host Configuration Protocol (DHCP), which automatically assigns an IP address and other network configuration parameters to each device on your network so they can communicate with other networks.
- Allow Virtual Private Network (VPN) connections: authorizes Virtual Private Network (VPN) connections based on a combination of the Layer 2 Tunneling Protocol and Internet Protocol Security.
- Allow IGMP traffic: authorizes multicast communication using the Internet Group Management Protocol (IGMP), which is required by some media streaming services for more efficient use of resources during activities such as video streaming and gaming.
- Allow Multicast traffic: authorizes applications and services to stream media to multiple recipients in a single transmission, which is necessary for activities such as video conferencing.
- Allow MS VPN - PPTP & GRE: authorizes Virtual Private Network (VPN) connections based on the Point-to-Point Tunneling Protocol. This protocol is known to present many security risks.
- Avast Premium Security 21.x for Windows
- Avast Free Antivirus 21.x for Windows
- Microsoft Windows 11 Home / Pro / Enterprise / Education
- Microsoft Windows 10 Home / Pro / Enterprise / Education - 32 / 64-bit
- Microsoft Windows 8.1 / Pro / Enterprise - 32 / 64-bit
- Microsoft Windows 8 / Pro / Enterprise - 32 / 64-bit
- Microsoft Windows 7 Home Basic / Home Premium / Professional / Enterprise / Ultimate - Service Pack 1 with Convenient Rollup Update, 32 / 64-bit