Information Technology Reference
In-Depth Information
3-10. Configuring Remote Assistance Through the
Windows Firewall
Problem
You want to configure the Windows Firewall to allow Remote Assistance on a Windows Server
2003 computer.
Solution
1.
Open the Network Connections applet.
2.
Double-click on the Local Area Connection icon.
3.
From the Advanced tab, click Settings. This will launch the Windows Firewall Control
Panel applet.
4.
From the Exceptions tab, place a check mark next to Remote Assistance.
5.
To define the scope of the exception, click on Edit, followed by Change Scope, and
select from one of the following three options:
Any computer (including those on the Internet).
My network (local subnet).
Custom list. For this option, enter a single IP address using the syntax
192.168.1.151
,
or enter a range of addresses using the network ID of the range followed by its subnet
mask, such as
192.168.1.1/255.255.255.0
. Separate multiple entries using a comma.
6.
Click OK when you're finished.
Using a Command-Line Interface
The following command enables Remote Assistance requests to pass through the Windows
Firewall
> netsh firewall set service type = remotedesktop mode = ENABLE
Using Group Policy
Tables 3-19 and 3-20 show the settings that control the Remote Assistance exception within the
Windows Firewall in the domain and standard profiles respectively.
Table 3-19.
Configure Remote Assistance Exception—Domain Profile
Path
Computer Configuration\Administrative Templates\Network\
Network Connections\Windows Firewall\Domain Profile
Policy name
Windows Firewall: Allow remote desktop exception
Enabled
to allow incoming remote desktop traffic.
Disabled
to prevent it.
Value