Windows 7 64 Bit Modify the registry under Windows

1) Set the lifetime
HKEY_LOCAL_MACHINE Technique CurrentControlSet Solutions Tcpip ParametersDefaultTTL REG_DWORD 0-0xff (0-255 decimal, default 128)
Description: Specifies the outgoing IP packets to set the default time to live (TTL) value. TTL determines the IP packet inside the network before reaching the target greatest time to survive. It seriously limits the IP packet allowed to pass before disposal variety of routers. from time to time use this value to detect the remote host working program.
2) ICMP redirect messages to stop the assault
HKEY_LOCAL_MACHINE Program CurrentControlSet Services Tcpip
ParametersEnableICMPRedirects REG_DWORD 0x0 (default is 0x1)
Description: This parameter controls whether Windows 2000 will alter its route table in response to network devices (for example a router) to send ICMP redirect messages to it, are often used to perform bad issues. Win2000 the default worth is 1, that response to ICMP redirect message.
3) prohibit the response to ICMP packets
route advertisement
HKEY_LOCAL_MACHINE Technique CurrentControlSet Services Tcpip
Parameters Interfaces interface
PerformRouterDiscovery REG_DWORD 0x0 (default is 0x2)
Description: For that reason advised to flip off response of circular route ICMP packets. Win2000 the default worth is two, that when the DHCP sends the router uncover choice enabled.
4) to prevent SYN flood attacks
HKEY_LOCAL_MACHINE Method CurrentControlSet Providers
Tcpip ParametersSynAttackProtect REG_DWORD 0x2 (default is 0x0)
Description: SYN assault protection, such as decreasing the quantity of SYN-ACK re-transmission, distribution of resources to decrease the retention time. Route cache entry assets allocation delayed until a connection is created. If synattackprotect = two, then the connection directions AFD three-way handshake may be delayed to total. Note that only TcpMaxHalfOpen and TcpMaxHalfOpenRetried set from vary, the safety actions will probably be taken.
five) prohibit the C $, D $ Default share
a class
HKEY_LOCAL_MACHINE Technique CurrentControlSet Expert services lanmanserver
ParametersAutoShareServer, REG_DWORD, 0x0
six) prohibit the sharing of ADMIN $ default
HKEY_LOCAL_MACHINE System CurrentControlSet Providers lanmanserver
ParametersAutoShareWks, REG_DWORD, 0x0
7) restrict the IPC $ default share
HKEY_LOCAL_MACHINE Method CurrentControlSet Control
Lsarestrictanonymous REG_DWORD 0x0 default
0x1 anonymous users can't enumerate the neighborhood consumer checklist
0x2 anonymous people can not connect the device IPC $ share
Notice: don't recommend the use of 2, might possibly trigger a number of your support doesn't begin, such as SQL Server
8) do not help the IGMP protocol
HKEY_LOCAL_MACHINE Method CurrentControlSet Expert services Tcpip
ParametersIGMPLevel REG_DWORD 0x0 (default is 0x2)
Description: The recall below Win9x includes a bug, is to use so that others can use IGMP blue screen, modify the registry to fix this bug.Win2000 despite the fact that not this bug, but IGMP isn't needed, for that reason, can nonetheless be removed. To 0 soon after using the route print won't see that nasty term of 224.0.0.0.
nine) set arp cache aging time set
HKEY_LOCAL_MACHINE Method CurrentControlSet Providers: Tcpip
ParametersArpCacheLife REG_DWORD 0-0xFFFFFFFF (seconds, default is 120 seconds)
ArpCacheMinReferencedLife REG_DWORD 0-0xFFFFFFFF (seconds, default is 600)
Notice: If ArpCacheLife higher than or equal ArpCacheMinReferencedLife, the reference or references ARP cache entries expire in ArpCacheLife seconds. If ArpCacheLife less than ArpCacheMinReferencedLife,Windows 7 64 Bit, does not refer to items inside the ArpCacheLife seconds expire, and references to items within the ArpCacheMinReferencedLife seconds period of time. each time the outbound packet towards the entry of your IP handle, it'll refer to ARP cache entries.
ten) prohibit the dead gateway monitoring
HKEY_LOCAL_MACHINE Method CurrentControlSet Solutions: Tcpip
ParametersEnableDeadGWDetect REG_DWORD 0x0 (default is ox1)
Note: If you create numerous gateways, then your machine has issues in dealing with several connections, it'll immediately swap to a backup gateway. Sometimes this just isn't an excellent idea, proposed to prohibit dead gateway monitoring.
eleven) don't assistance routing
HKEY_LOCAL_MACHINE Technique CurrentControlSet Expert services: Tcpip
ParametersIPEnableRouter REG_DWORD 0x0 (default is 0x0)
Be aware: the worth is set to 0x1 with Win2000 routing can thus lead to unnecessary issues.
twelve) to accomplish NAT when changing the external port to enlarge the optimum
HKEY_LOCAL_MACHINE Technique CurrentControlSet Expert services: Tcpip
ParametersMaxUserPort REG_DWORD 5000-65534 (decimal) (default 0x1388 - decimal 5000)
Description: When an application requests through the program when the quantity of available user port, this parameter controls the greatest variety of ports utilized. Normally, the variety of short-term port allocation for that 1024-5000. This parameter is set towards the successful outdoors, it'll use the closest legitimate worth (5000 or 65534.) recommended the worth of employing the NAT amplification factors.
thirteen) modify the MAC deal with of
HKEY_LOCAL_MACHINE Technique CurrentControlSet Manage Class
Support to find the right window for the
Expand it, in its branches below 0000,0001,0002 ... find LAN on Motherboard