Information Technology Reference
In-Depth Information
If the user is not a local administrator, the message informs them that they might need to
contact a network administrator, which can alert the network administrator about possible
malicious programs on the network.
If the user is a local administrator, and you have either enabled the Windows Firewall: Allow
Local Program Exceptions setting or you have not configured the Windows Firewall: Define
Program Exceptions setting, the notification message allows the user to specify whether to
enable the application. If you disable the Windows Firewall: Define Program Exceptions setting,
the user will not be notified unless the policy is enabled locally.
See Also
Recipe 3-19 for more on auditing Windows Firewall events
Microsoft TechNet: “Managing Windows Firewall Notifications”
(
http://technet2.microsoft.com/WindowsServer/en/Library/
b3440a22-ae9c-45a3-8a61-da3f8a2c791f1033.mspx
)
Microsoft TechNet: “Known Issues for Managing Windows Firewall Notifications”
(
http://technet2.microsoft.com/WindowsServer/en/Library/
2e3c1981-39fb-4979-bd16-c38ec6bf29fb1033.mspx
)
3-13. Allowing IPSec Traffic
Problem
You want to allow IPSec traffic to pass through the Windows Firewall on a Windows Server 2003
computer.
Solution
Using Group Policy
Table 3-25 contains the Group Policy setting that allows IPSec traffic to bypass the Windows
Firewall.
Table 3-25.
Configure IPSec Traffic Exception
Computer Configuration\Administrative Templates\Network\
Network Connections
Path
Policy name
Windows Firewall: Allow authenticated IPSec bypass
Value
Enabled
to allow authenticated IPSec traffic to bypass the Windows Firewall.
Disabled
to prevent it.
