Information Technology Reference
In-Depth Information
enabling the Windows Firewall for the standard profile even if you disable it in the domain
profile. In this way, any mobile users running Windows Server 2003 on their laptops (appli-
cation developers, for example) will still have firewall protection for their laptop computers
when they're not attached to the domain or are otherwise unable to rely on the protection of a
corporate firewall.
Using a Command-Line Interface
When using netsh to configure the Windows Firewall, much of the verbiage is optional and can
be skipped to save time when entering commands on the fly. For example, this command
netsh firewall set opmode mode = enable exceptions = enable profile = all
can be shortened to
netsh firewall set opmode enable enable all
or it can even be made as short as
netsh fi set op en en a
See Also
Recipe 3-2 for more on configuring exception processing
Microsoft: “Understanding Windows Firewall” (
http://www.microsoft.com/windowsxp/
using/security/internet/sp2_wfintro.mspx
)
3-2. Configuring Exception Processing
Problem
You want to manage rules and exceptions configured on the Windows Firewall.
Solution
Using a Graphical User Interface
1.
Open the Network Connections applet.
2.
Double-click on the Local Area Connection icon.
3.
From the Advanced tab, click Settings. This will launch the Windows Firewall Control
Panel applet.
4.
From the General tab, place a check mark next to Don't Allow Exceptions if you want to
prevent the Windows Firewall from allowing entries configured on the Exceptions tab
to pass through the firewall. To allow these entries to be processed, remove the check
mark next to Don't Allow Exceptions.
