Configuring Windows Firewall Group Policies in Windows Small Business Server 2008

In the new Windows Small Business Server 2008, there are actually two different locations depening on which version of Windows your are configuring for.


Below, I have outline where to find the appropriate locations to configure both Windows XP SP2-based (click the link for more infomation) workstations or Windows Vista (including Windows 7) based workstations.



Note: these directions assume you have Group Policy Management addin saved under Windows SBS Native Tools Management.

For Windows Vista & 7
  1. Open “Windows SBS Native Tools Management” Console
  2. Navigate to:
    Group Policy Management > Forest: domain.local > Domains > domain.local > MyBusiness > Computers > SBSComputers
  3. Right-click on “Windows SBS Client – Windows Vista Policy” and select Edit
  4. Navigate to:
    Computer Configuration > Windows Settings > Security Settings > Windows Firewall with Advanced Security.





  5. Right-click on “Inbound Rules” and select “New Rule...” and complete the wizard respectively.
For Windows XP
  1. Open “Windows SBS Native Tools Management” Console
  2. Navigate to:
    Group Policy Management > Forest: domain.local > Domains > domain.local > MyBusiness > Computers > SBSComputers
  3. Right-click on “Windows SBS Client – Windows XP Policy” and select Edit
  4. Navigate to:
    Computer Configuration > Policies > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile
  5. In the right-hand panel, right-click on “Windows Firewall: Define inbound program exceptions” or “ Windows Firewall: Define inbound port exceptions” and select Properties
  6. In the window, click the “Show...” button
  7. Enter in required exceptions (see example), then click OK when finished.
For Windows XP Firewall program exception example, use the following as a guide:
%ProgramFiles%\ExampleAppFolder\Example.exe:*:Enabled:Example Program Title
For  Windows XP Firewall port exception example:
23:TCP:*:Enabled:Telnet
Port Number : TCP/UDP: Scope : Enable/Disabled : Port Title

For more information, see the following Microsoft TechNet page:
http://technet.microsoft.com/en-us/library/bb490616.aspx#EBAA

Comments

Post a Comment

Popular posts from this blog

Repair Windows 7 after removing a Linux partition (Dual Boot)

Image
I have seen the appear alot in the forums of people are running a dual boot scenario on their computers, dual-booting Windows with Linux, and no longer want the Linux system. Simply removing the paritions causes Windows to longer boot. In this article I explain how you can fix this problem. In this article, I will show you how to repair Windows 7 after removing Ubuntu 11.10. Although, this will work regardless of the distribution of Linux you are using. When you remove the Linux partition(s) you essentially remove the boot loader and screw up the master boot record. This need to be repaired for Windows to work again. Contents Removing the Linux Partitions Repairing Windows Boot Loader Removing the Linux Partitions Boot to Windows 7 and open Computer Management. Do this by either right-clicking My Computer and selecting Manage, or simple search for Computer Management from the Start Menu. Once open, select Disk Management. Here you will see the layout of the
Read more

Office 365 ScanPST to fix corrupted Outlook files

Image
In Office 365, which uses the Click-to-Run technology, Office program files are now in a new location. When you experience issues with Outlook, often you would use the ScanPST.exe tool to repair PST and OST files with Outlook. This tool can now be found in the following location: C:\Program Files\Microsoft Office 15\root\office15\ScanPST.exe This should apply for both 32-bit and 64-bit installations of Office 365. Update: Microsoft has published a Knowledge Base article list the locations of the ScanPST utility depending on your installation of Office 365. Whether you're using 32 or 64 bit versions. https://support.microsoft.com/en-us/kb/272227
Read more

HP LaserJet P3005 Cold Reset

Image
To perform a factory / hard / cold reset on a HP LaserJet P3000 Series printer wasn't that straight forward in my eyes. Although in the menus there was an option for Reset Factory Defaults, this did very little in erasing the configuration and returning the printer to a default state. After reading through a few manuals I found the following performed what HP call a Cold Reset. Cold reset A cold reset unlocks menus that have been previously locked and sets all control panel menu items(including EIO settings) back to the factory defaults. However, it does not clear the values in the SERVICE menu (such as the serial number and page counts). NOTE    Before performing a cold reset, print a menu map and a configuration page. Use the information on the configuration page to reset any customer-set device configuration values that the cold reset procedure changes. Turn the device off. Turn the device on. When the memory count begins, press and hold the green Check butto
Read more