...I've actually tested Windows XP firewall using nmap. It does

a rather admirable job of 'stealthing' a PC.
What options did you use with nmap when you performed your test? I am

currently using nmap 3.95 for 2000.

The biggest drawback is that it does not block or filter

outgoing connections. It's probably satisfactory for most

users.

IMO Windows firewall is 'satisfactory' to the people who don't know any

better or the people who don't anything about security. As long as they

can get online, surf the net, check email, and play some online games

they don't care about it.

Now for the techies and geeks who love this stuff (which is US) we

have different opionions on this subject. IMO Windows firewall is

better than nothing, but since it doesn't have any type of

outbound monitoring it makes it a security risk. Bottom line is, you don't neglect inbound security, so why would you neglect outbound security?