Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

United States Government Configuration Baseline USGCB

Windows XP Firewall

Warning Notice

Do not attempt to implement any of the settings without first testing them in a non-operational environment. Please see the National Checklist Program (NCP) website for configuration guides related to other Windows Based systems and applications.

The draft download packages contain recommended security settings; they are not meant to replace well-structured policy or sound judgment. Furthermore, these recommendations do not address site-specific configuration issues. Care must be taken when implementing these settings to address local operational and policy concerns.

These recommendations were developed at the National Institute of Standards and Technology, which collaborated with DoD and Microsoft to produce the Windows 7, Windows 7 Firewall, Internet Explorer 8 USGCB. Pursuant to title 17 Section 105 of the United States Code, these recommendations are not subject to copyright protection and are in the public domain. NIST assumes no responsibility whatsoever for their use by other parties, and makes no guarantees, expressed or implied, about their quality, reliability, or any other characteristic. We would appreciate acknowledgement if the recommendations are used.

Download Packages

The following sections provide the downloads for the Windows XP Firewall USGCB Content. VHDs are also available to use for testing. Additional information can be found in the FAQ.

SCAP Content

USGCB SCAP 1.2
SHA-256: 403dc7db7a75961f6f218b5b90b8b59cd55d7c848bdd2c70f0d5a8cc495ae938
Size (MB): 0.03
Last Modified: 04/20/2015

Documentation

USGCB Major Version 2.1.x.1 Settings

Please refer to the top-level Microsoft Content Page for the listing of all USGCB settings and associated hash values.

USGCB Major Version 2.1.x.1 Known Issues

Please refer to the top-level Microsoft Content Page for the listing of all known issues relating to USGCB content and associated hash values.

GPOs

USGCB Windows XP Firewall GPOs
SHA-256:  7107b5bd39d35c67cba40cb44260c7c9af9f92a631169815a208a68e2666c042
Size (MB): 0.34
Last Modified: 11/10/2011

CCE to 800-53 Mappings

Please refer to the individual product content pages for the Machine-readable CCE to 800-53 Mappings.

Update History

Date Documentation GPOs SCAP Content CCE to 800-53 Mappings
April 20, 2015 No changes No changes USGCB minor version 2.1.0.1 Final Release SCAP content posted. No changes
February 25, 2015 No changes No changes USGCB minor version 2.1.0.1 Release Candidate SCAP content posted. No changes
November 28, 2012 No changes No changes SCAP 1.2 (Oval 5.10) content signature updated; no other change to content. No changes
May 21, 2012 No changes No changes Content bundle repackaged, no content changes. No changes
April 23, 2012 No changes No changes Content bundle repackaged, no content changes. No changes
March 22, 2012 No changes No changes Content bundle repackaged, no content changes. No changes
November 14, 2011 No changes No changes USGCB major version 2.0.x.0 SCAP content posted No changes
November 10, 2011 No changes USGCB GPOs posted No changes No changes
October 17, 2011 No changes No changes USGCB major version 2.0.x.0 SCAP content posted No changes
October 05, 2011 No changes No changes No changes National Checklist Program's Machine-readable CCE to 800-53 Mappings linked
September 21, 2011 USGCB major version 1.2.x.0 Settings and Known Issues posted No changes USGCB major version 2.0.x.0-Alpha-Candidate SCAP content posted No changes
Created December 14, 2016, Updated June 22, 2020