Virtual Architects Support Wiki

User Tools

Site Tools

You are here: start » computing » security » windows_firewall
Trace:
computing:security:windows_firewall

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
computing:security:windows_firewall [2012/05/08 12:57]
gcooper 		computing:security:windows_firewall [2014/07/26 11:51] (current)
gcooper
Line 4: Line 4:
  
 :!: You can use Computer Startup scripts as they run as the LocalSystem account. :!: You can use Computer Startup scripts as they run as the LocalSystem account.
 +
 +===== Enable ICMP (Ping) Responses =====
 +
 +Enable the existing rule(s) for:
 +
 +<file>
 +File and Printer Sharing (Echo Request - ICMPv4-In)
 +</file>
  
 ===== Manage with Group Policy ===== ===== Manage with Group Policy =====
 +
 +==== Windows XP/2003 ====
  
 http://technet.microsoft.com/en-us/library/bb490626.aspx http://technet.microsoft.com/en-us/library/bb490626.aspx
 +
 +http://technet.microsoft.com/en-us/library/bb490616.aspx
  
 Edit an existing or create a new Group Policy Object (GPO) Edit an existing or create a new Group Policy Object (GPO)
  
-**Computer Configuration -> Administrative Templates -> Network -> Network Connections -> Windows Firewall**+**Computer Configuration -> Policies -> Administrative Templates -> Network -> Network Connections -> Windows Firewall**
  
 Choose the proper profile to modify, //Standard// or //Domain//, if you are on a domain-based network. Choose the proper profile to modify, //Standard// or //Domain//, if you are on a domain-based network.
Line 18: Line 30:
  
   * Enable firewall on all workstations   * Enable firewall on all workstations
 +  * Allow Remote Desktop connections
   * Enable WMI   * Enable WMI
   * Enable AVG Admin remote installations   * Enable AVG Admin remote installations
  
-Windows Firewall: Protect all network connections -> enabled+^Setting^Enabled^Other Settings or Notes^ 
 +|Windows Firewall: Protect all network connections|enabled|Enable the Windows Firewall| 
 +|Windows Firewall: Allow remote administration exception|enabled|IP address of your management host| 
 +|Windows Firewall: Allow ICMP exceptions|enabled|Allow inbound echo request| 
 +|Windows Firewall: Allow Remote Desktop exception|enabled|comma separated list of allowed IP addresses or networks| 
 +|Windows Firewall: Define port exceptions|enabled|135:TCP:*:enabled:TCP_135 and 135:UDP:*:enabled:UDP_135| 
 + 
 +==== Windows 7/2008 ==== 
 + 
 +http://www.grouppolicy.biz/2010/07/how-to-manage-windows-firewall-settings-using-group-policy/ 
 + 
 +**Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Windows Firewall with Advanced Security** 
 + 
 +:!: Note that settings from the older XP/2003 firewall will also still be applied and may conflict! 
 + 
 + 
  
-Windows Firewall: Allow remote administration exception -> enabled -> ipaddr.your.mgmt.host (adjust)+===== Manage with Batch Files =====
  
-Windows FirewallAllow ICMP exceptions -> enabled -> Allow inbound echo request+http://community.spiceworks.com/topic/103535-is-there-a-way-to-run-a-netsh-command-without-admin-rights
  
-Windows FirewallAllow Remote Desktop exception -> enabled -> localnet,10.0.0.0/8 (adjust)+http://www.ehow.com/how_7517044_use-vbs-netsh.html
computing/security/windows_firewall.1336503428.txt.gz · Last modified: 2012/05/08 12:57 by gcooper

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki