Information Technology Reference
In-Depth Information
6.
Choose the protocol type as well as the local and remote port numbers that are affected
by this rule. For this exercise, choose TCP and make sure All Ports is selected for both
Local Port and Remote Port. Click Next to continue.
7.
Choose the local and remote IP addresses that are affected by this rule. Choose Any IP
Address for both local and remote; then click Next.
8.
Specify whether this rule will allow the connection, allow the connection only if it is
secure, or block the connection. Select the option Allow The Connection If It Is Secure;
then click Next.
9.
Specify whether connections should be allowed only from certain users. You can exper-
iment with these options if you want. Then click Next to continue.
10. Specify whether connections should be allowed only from certain computers. Again,
you can experiment with these options if you want. Then click Next to continue.
11. Choose those profiles that will be affected by this rule. Select one or more profiles; then
click Next to continue.
12. Give your profile a name and description; then click Finish. Your custom rule will appear
in the list of Inbound Rules, and the rule will be enabled.
13. Double-click your newly created rule. Notice that you can change the options you previ-
ously configured.
14. Disable the rule by right-clicking the rule and choosing Disable Rule.
15. Close Windows Firewall.
Now let's take a look at setting up Connection Security Rules through Windows Fire-
wall with Advanced Security.
Configuring Windows Firewall with a GPO
If you wanted to configure Windows Firewall on all of your client machines, you have two
options. You can either configure each machine manually or set up a GPO to configure the
Windows Firewall. To set up the Windows Firewall using a GPO, configure the Computer
section Windows Settings Security Windows Firewall With Advanced Security.
One of the advantages of using a GPO when configuring the Windows firewall is that
you can configure multiple profiles and multiple firewall settings using the Group Policy.
Another even bigger advantage is being able to configure thousands of computers by
setting just one GPO. It saves an IT administrator from going around the company from
machine to machine to set up the firewall.
Import/Export Policies
One advantage of configuring Windows Firewall is the ability to export and import policy
settings. For example, I set up a policy for 35 machines; I created the policy on one of
the 35 machines and then exported the policy. I then imported the policy to the other
Search WWH ::




Custom Search