Managing Windows XP Firewall Through Command-line



Similar documents
Troubleshooting Guide

In this lab you will explore the Windows XP Firewall and configure some advanced settings.

Lab - Configure a Windows XP Firewall

Lab - Configure a Windows 7 Firewall

Lab - Configure a Windows Vista Firewall

Special Note Ethernet Connection Problems and Handling Methods (CS203 / CS468 / CS469)

Installation Troubleshooting Guide

Yale Software Library

Configuring the Windows XP SP2/Vista Firewall for UserLock

How to Configure Windows Firewall on a Single Computer

InduSoft Web Studio + Windows XP SP2. Introduction. Initial Considerations. Affected Features. Configuring the Windows Firewall

Windows Firewall must be enabled on each host to allow Remote Administration. This option is not enabled by default

(1) Network Camera

SECUREIT.CO.IL. Tutorial. NetCat. Security Through Hacking. NetCat Tutorial. Straight forward, no nonsense Security tool Tutorials

Setup and configuration for Intelicode. SQL Server Express

SafeCom Smart Printing Administrator s Quick Guide

Important Notes for WinConnect Server VS Software Installation:

Biznet GIO Cloud Connecting VM via Windows Remote Desktop

Setup for Windows XP Connect to your Windows XP machine with: FileBrowser, NetPortal & ServerControl

Quick Installation Guide Network Management Card

If the printer is connected to a computer by a USB cable, and you are using the printer sharing function

Configuring Windows Firewall for Remote Connection in Windows XP SP2:

ms-help://ms.technet.2005mar.1033/security/tnoffline/security/smbiz/winxp/fwgrppol...

How to install and use CrossTec Remote Control or SchoolVue in a Virtual and or Terminal Service environment

ilaw Installation Procedure

DCA Local Print Agent Push Install

DCOM Setup. User Manual

TOPAZ. Using Windows XP with service pack 2. GE Security. Supplement Revision A January 15, 2005

Steps to be taken when you are unable to get the license in Tally.ERP 9

Network Setup Instructions

Cisco QuickVPN Installation Tips for Windows Operating Systems

Windows Firewall Exceptions Configuring Windows Firewall Exceptions for Docusnap

Configuring MassTransit Server to listen on ports less than 1024 using WaterRoof on Macintosh Workstations

WorldExtend IronDoor 3.5 Publishing a Terminal Services Application

TrueEdit Remote Connection Brief

Step-by-Step Guide for Setting Up IPv6 in a Test Lab

progecad NLM User Guide

Virgil and the Windows XP Service Pack 2 Firewall FAB Software Limited September 2004

Using Diskeeper Corporation Products with Windows XP Service Pack 2, Windows Server 2003 Service Pack 1 and Windows Vista

LifeCyclePlus Version 1

Windows XP Service Pack 2 Windows Firewall Group Policy Setup for Executive Software Products

Spam Marshall SpamWall Step-by-Step Installation Guide for Exchange 5.5

ilaw Server Migration Guide

32-Bit Workload Automation 5 for Windows on 64-Bit Windows Systems

freesshd SFTP Server on Windows

IP Office Technical Tip

Microsoft XP Professional Remote Desktop Connection

Netwatch Installation For Windows

XStream Remote Control: Configuring DCOM Connectivity

1 crossover cable. the PCs. network

STEP 1: INSTALLING WINDOWS DEFENDER

Important Notes for WinConnect Server ES Software Installation:

Networking Best Practices Guide. Version 6.5

How To Make A Backdoor On Windows Server From A Remote Computer From A Command Prompt On A Windows 2 Computer (Windows) On A Pc Or Ipad (Windows 2) On An Ipad Or Ipa (Windows 3) On Your Pc Or

DSL-G604T Install Guides

Introduction. What is a Remote Console? What is the Server Service? A Remote Control Enabled (RCE) Console

AN-022 Protégé Client / Server DCOM Configuration Windows XP SP2

Installation Instruction STATISTICA Enterprise Small Business

Scan to SMB(PC) Set up Guide

How To Create An Easybelle History Database On A Microsoft Powerbook (Windows)

Multi-Homing Dual WAN Firewall Router

Firewall VPN Router. Quick Installation Guide M73-APO09-380

Backup Server DOC-OEMSPP-S/6-BUS-EN

Lab Configuring Access Policies and DMZ Settings

STATISTICA VERSION 12 STATISTICA ENTERPRISE SMALL BUSINESS INSTALLATION INSTRUCTIONS

Remote Desktop How-To. How to log into your computer remotely using Windows XP, etc.

Remote Desktop Administration

Connecting your Virtual Machine to the Internet. BT Cloud Compute. The power to build your own cloud solutions to serve your specific business needs

VPN: Installing the IPSec client

Active Directory Group Policy. Administrator Reference

On-Net Surveillance Systems, Inc. Triggering Software Generic Events from the Windows Scheduler

Installation and Deployment

Microsegmentation Using NSX Distributed Firewall: Getting Started

Troubleshooting File and Printer Sharing in Microsoft Windows XP

1:1 NAT in ZeroShell. Requirements. Overview. Network Setup

Setting up and creating a Local Area Network (LAN) within Windows XP by Buzzons

Installing Kaspersky Security Center 10.0 on Microsoft Windows Server 2012 Core Mode

Integrating Trend Micro OfficeScan 10 EventTracker v7.x

MilsVPN VPN Tunnel Port Translation. Table of Contents Introduction VPN Tunnel Settings...2

Guide to Setting up Internet Connection Sharing for Windows

Version 3.8. Installation Guide

AVG 8.5 Anti-Virus Network Edition

MFPConnect Monitoring. Monitoring with IPCheck Server Monitor. Integration Manual Version Edition 1

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

File sharing in Windows XP

Release Notes. Pre-Installation Recommendations... 1 Platform Compatibility... 1 Known Issues... 2 Resolved Issues... 2 Troubleshooting...

USER GUIDE. Ethernet Configuration Guide (Lantronix) P/N: Rev 6

Freshservice Discovery Probe User Guide

Network Load Balancing

SecureIT Plus Firewall Features and Functionality

LICENSE MANAGER VERSION 7.2. Procedures for Use of Sentinel LM7.2 Server for CHEMCAD. rev

Elluminate Live! Access Guide. Page 1 of 7

SCCM Client Checklist for Windows 7

Creating client-server setup with multiple clients

Manually Add Programs to Your Firewall or Anti-Virus Programs Trusted List. ZoneAlarm

HL2170W Windows Network Connection Repair Instructions

ShadowControl ShadowStream

Technical Brief for Windows Home Server Remote Access

VeriCentre 3.0 Upgrade Pre-Installation and Post Installation Guidelines

Nagios XI Monitoring Windows Using WMI

Transcription:

Managing Windows XP Firewall Through Command-line By Pavan Shah Net-square Solutions pavan@net-square.com Overview The purpose of this document is to introduce functionalities of Windows XP s native netsh command. In this document we will see how we can change certain firewall s configuration settings using netsh command. Windows XP Firewall Windows XP with Service Pack 2 includes a basic firewall that protects users from various attacks. Firewall feature in windows XP is designed for home and small business users. By default firewall is turned on in Windows XP. For example, Windows XP with SP2 is installed on machine A (IP Address 192.168.7.113).Firewall is turned on. netsh command netsh command in Windows XP allows us to change most of configuration parameters through command line. It is a nice command line utility to perform most of the configuration tasks. We will not go into details of netsh options and we will straight away jump to netsh firewall context. Open command prompt and give netsh command. C:\>netsh netsh> As show above this will change to netsh> prompt. This gives us an interactive shell to run commands.

To change to firewall context of netsh write firewall at the netsh> prompt as shown below: netsh>firewall netsh firewall>? Commands in this context:? - Displays a list of commands. add - Adds firewall configuration. delete - Deletes firewall configuration. dump - Displays a configuration script. help - Displays a list of commands. reset - Resets firewall configuration to default. set - Sets firewall configuration. show - Shows firewall configuration. As shown above? command prints help for the commands available in netsh context. Default settings of firewall prevents: -ICMP ECHO requests to the machine running firewalls. Users can t ping that machine. -File and print sharing is disabled. Users can t share folders with other users on the network. Let us change default settings through command line. Allowing incoming ICMP ECHO Requests To allow Incoming ICMP ECHO requests give following command: netsh firewall>set icmpsetting 8 ENABLE Now other users on the network should be able to ping 192.168.7.113. To disable this feature give following command: netsh firewall>set icmpsetting 8 DISABLE Enabling File and Printer sharing netsh firewall>set service This command will show help for set service command.

netsh firewall>set service FILEANDPRINT ENABLE This will let all users on the network to access shared resources on the host 192.168.7.113. If I wish that only users on the subnet 192.168.7.0/24 should be able to access shared resources on 192.168.7.113 then I can specify that with: netsh firewall>set service FILEANDPRINT ENABLE CUSTOM 192.168.7.0/24 Turning Off Firewall To turn off firewall through command line give following command in the netsh firewall context netsh firewall>set opmode disable This will turn off firewall. You can verify the same through control panel. To enable firewall again give following command: netsh firewall>set opmode enable Disabling Don t Allow Exceptions In Windows XP Firewall we can specify exceptions that the firewall will allow. If Don t allow exceptions check box is enabled then programs and ports mentioned in exceptions are not allowed by the firewall. In default XP Firewall don t allow exceptions check box is not enabled. Let us enable the check box through command line: netsh firewall>set opmode enable disable Let us disable the check box. netsh firewall>set opmode enable enable Allowing Specific programs

In firewall control panel in the exceptions tab we can add programs that should be allowed through firewall. For example, I want to run netcat on my machine. netcat is called swiss army knife in the security field and is used for many purposes. For example, I want netcat to listen on port TCP 5000 on my machine. For that I will issue following command: C :> nc.exe l p 5000 Firewall will immediately prompt me and ask me whether I want to allow this program or not. Let s click on the keep blocking button. This means that next time when we run nc.exe it will block nc.exe from running. Now let us allow nc.exe through command line and add it to the exceptions list. netsh firewall>set allowedprogram This command will show you usage for set allowedprogram. netsh firewall>set allowedprogram c:\nc.exe allow_nc ENABLE

As shown above our command adds allow_nc to the list of exception programs. Now try to connect to port 5000 from other machine. You should be able to connect. Resetting Firewall to default settings Now we have played enough with the firewall and let us change it to the default settings. netsh firewall>reset This will change firewall to the default state. All our modifications will be gone.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information