locked
BFE makes the program work abnormal. RRS feed

  • Question

  • Hi,

    I have some problems in Windows 10, so ask you how to fix them.

    When we run our program, "LocalServiceNoNetworkFirewall" service starts to work,
    so CPU usage spikes and packet loss occurs.

    But our program works very well after BFE turned off.

    When "LocalServiceNoNetworkFirewall" starts, Ethernet receive status also starts to decrease .

    So, can you kindly clarify me in what situation this service start to run?

    Thanks in advance,
    Yongmin


    Thursday, March 12, 2020 5:12 AM

Answers

  • BFE and Mpssvc are critical services to the Windows operating system.  They are not to be turned off and if they are, many networking features are affected in adverse ways.

    If you are looking to turn off the Windows Defender Firewall, then the proper way to do this is to do one of the following:

    NetSh

        NetSh.exe AdvFirewall Set AllProfiles state off

    PowerShell

        Set-NetFirewallProfile -Profile:@('Domain','Private','Public') -Enabled:"$false"

    UI:

        firewall.cpl (Control Panel\System and Security\Windows Defender Firewall)
            Turn Windows Defender Firewall On or Off in the left menu
                Turn off Windows Defender Firewall (not recommended)

        you need to do this for each profile

    Not that it is not recommended to disable the Windows Defender Firewall unless you have another host firewall installed (McAfee, Symantec, Kaspersky, etc. )

    As for the performance, the traffic does not start to get impeded unless it matches filtering policy.  Based on the policy, various things can happen ( the traffic is blocked, allowed, or some out of band code is run against it to determine whether to let the traffic continue or not ).

    Rather than try to circumvent the system, it would be more in your interest to elaborate on what the traffic is that you are seeing a significant degradation with and your environment.


    Dusty Harper [MSFT]
    Microsoft Corporation
    ------------------------------------------------------------
    This posting is provided "AS IS", with NO warranties and confers NO rights
    ------------------------------------------------------------

    • Marked as answer by Brian Catlin Wednesday, March 18, 2020 12:12 AM
    Monday, March 16, 2020 7:58 PM

All replies

  • BFE and Mpssvc are critical services to the Windows operating system.  They are not to be turned off and if they are, many networking features are affected in adverse ways.

    If you are looking to turn off the Windows Defender Firewall, then the proper way to do this is to do one of the following:

    NetSh

        NetSh.exe AdvFirewall Set AllProfiles state off

    PowerShell

        Set-NetFirewallProfile -Profile:@('Domain','Private','Public') -Enabled:"$false"

    UI:

        firewall.cpl (Control Panel\System and Security\Windows Defender Firewall)
            Turn Windows Defender Firewall On or Off in the left menu
                Turn off Windows Defender Firewall (not recommended)

        you need to do this for each profile

    Not that it is not recommended to disable the Windows Defender Firewall unless you have another host firewall installed (McAfee, Symantec, Kaspersky, etc. )

    As for the performance, the traffic does not start to get impeded unless it matches filtering policy.  Based on the policy, various things can happen ( the traffic is blocked, allowed, or some out of band code is run against it to determine whether to let the traffic continue or not ).

    Rather than try to circumvent the system, it would be more in your interest to elaborate on what the traffic is that you are seeing a significant degradation with and your environment.


    Dusty Harper [MSFT]
    Microsoft Corporation
    ------------------------------------------------------------
    This posting is provided "AS IS", with NO warranties and confers NO rights
    ------------------------------------------------------------

    • Marked as answer by Brian Catlin Wednesday, March 18, 2020 12:12 AM
    Monday, March 16, 2020 7:58 PM
  • Thank you for your reply.

    I was looking for a way to disable the firewall instead of turning it off.

    A firewall that didn't work when running another company's camera viewer program is running when we're running our program.

    So I want to find and fix why the firewall only works in our program. 

    Can you help me find the cause of the firewall operation?

    Thank you!

    Yongmin.

    Tuesday, March 17, 2020 4:24 AM
  • To troubleshoot this, I suggest doing the following:

    From an elevate command prompt run

    Netsh.exe WFP Capture Start

    Launch your app and repro your failing scenarios

    Netsh.exe WFP Capture Stop

    This will produce WFPDiag.cab.  Please email me this with the details of your scenario ( the app name, ports its using, etc.)

    email to  DHarper AT Microsoft.com

    Thanks


    Dusty Harper [MSFT]
    Microsoft Corporation
    ------------------------------------------------------------
    This posting is provided "AS IS", with NO warranties and confers NO rights
    ------------------------------------------------------------

    Tuesday, March 17, 2020 9:31 PM
  • Thanks Dusty

    I emailed you.

    Wednesday, March 18, 2020 2:38 AM
  • Hi, Dusty.

    Would you please check if the mail I sent was blocked by spam?

    I don't have a reply to the email sent 5 days ago, so I think I need to check it.

    Please check the post and reply.

    Thanks

    - Yongmin

    Monday, March 23, 2020 2:28 AM