|
Well the firewalling should be done at the perimeter to keep outside systems from spamming your internal systems, not internal systems firewalled from each other.
If you can and want to manage internal firewalls that's cool - just think a lot of us Admins are too busy (lazy) to setup and test everything and make sure all applications and our remote admin tools work on all systems so we shut off the XP firewall.
| 
