JSI Tip 9254. How might you configure the Windows Firewall using the Group Policy Management Console on your Windows Server 2003 SP1 computer?

Service Pack 1 for Windows Server 2003 adds the Windows Firewall, like Windows XP SP2.

To use Group Policy to configure the Windows Firewall for your domain, you could:

01. Open the Group Policy Management console from the Administrative Tools folder.

02. Right-click the Default Domain Policy and press Edit.

03. Navigate through Computer Configuration / Administrative Templates / Network / Network Connections / Windows Firewall.

04. Expand Domain Profile.

05. Double-click Windows Firewall: Protect all network connections and check Enabled. Press Apply and Next Setting.

06. Double-click Windows Firewall: Do not allow exceptions and check Disabled. Press Apply and Next Setting.

07. Double-click Windows Firewall: Define program exceptions and check Enabled.

08. Press Show and Add.

09. Type: %program files%\messenger\msmsgs.exe:*:enabled: Messenger.

10. Press OK, OK, Apply, and Next Setting.

11. Double-click Windows Firewall: Allow local program exceptions and check Enabled. Press Apply and Next Setting.

12. Double-click Windows Firewall: Allow remote administration exception and check Enabled. Press Apply and Next Setting.

13. Double-click Windows Firewall: Allow file and printer sharing exception and check Enabled. Press Apply and Next Setting.

14. Double-click Windows Firewall: Allow ICMP exceptions and check Enabled. Press Apply and Next Setting.

15. Double-click Windows Firewall: Allow Remote Desktop exception and check Enabled. Press Apply and Next Setting.

16. For Windows Firewall: Allow UPnP framework exception, leave the default of Not Configured, pressing Next Setting.

17. Double-click Windows Firewall: Prohibit notifications and check Enabled. Press Apply and Next Setting.

18. Double-click Windows Firewall: Allow logging and check Enabled. Check Log dropped packets and Log successful connections. In the Log file path and name box, type c:\firewall.log. Change the Size limit (KB) to the maximum, 32767. Press Apply and Next Setting.

19. Double-click Windows Firewall: Prohibit unicast response to multicast or broadcast requests and check Enabled. Press Apply and Next Setting.

20. For Windows Firewall: Define port exceptions, leave the default of Not Configured. Press Next Setting.

21. For Windows Firewall: Allow local port exceptions, leave the default of Not Configured.

22. Press OK.

23. Close the Group Policy Object Editor.

24. Close the Group Policy Management console.



Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish