User Tools
computing:security:windows_firewall
This is an old revision of the document!
Windows Firewall
Login scripts run in the security context of the user logging in and are therefore not suitable for manipulating the Windows Firewall.
You can use Computer Startup scripts as they run as the LocalSystem account.
Manage with Group Policy
http://technet.microsoft.com/en-us/library/bb490626.aspx
Edit an existing or create a new Group Policy Object (GPO)
Computer Configuration → Administrative Templates → Network → Network Connections → Windows Firewall
Choose the proper profile to modify, Standard or Domain, if you are on a domain-based network.
Here are some settings to:
- Enable firewall on all workstations
- Enable WMI
- Enable AVG Admin remote installations
| Setting | Enabled | Settings |
|---|---|---|
| Windows Firewall: Protect all network connections | enabled | |
| Windows Firewall: Allow remote administration exception | enabled | ipaddr.your.mgmt.host (adjust) |
| Windows Firewall: Allow ICMP exceptions | enabled | Allow inbound echo request |
| Windows Firewall: Allow Remote Desktop exception | enabled | localnet,10.0.0.0/8 (adjust) |
computing/security/windows_firewall.1336503586.txt.gz · Last modified: 2012/05/08 12:59 by gcooper
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
