Configuring Windows Firewall Group Policies in Windows Small Business Server 2008

In the new Windows Small Business Server 2008, there are actually two different locations depening on which version of Windows your are configuring for.


Below, I have outline where to find the appropriate locations to configure both Windows XP SP2-based (click the link for more infomation) workstations or Windows Vista (including Windows 7) based workstations.



Note: these directions assume you have Group Policy Management addin saved under Windows SBS Native Tools Management.

For Windows Vista & 7
  1. Open “Windows SBS Native Tools Management” Console
  2. Navigate to:
    Group Policy Management > Forest: domain.local > Domains > domain.local > MyBusiness > Computers > SBSComputers
  3. Right-click on “Windows SBS Client – Windows Vista Policy” and select Edit
  4. Navigate to:
    Computer Configuration > Windows Settings > Security Settings > Windows Firewall with Advanced Security.





  5. Right-click on “Inbound Rules” and select “New Rule...” and complete the wizard respectively.
For Windows XP
  1. Open “Windows SBS Native Tools Management” Console
  2. Navigate to:
    Group Policy Management > Forest: domain.local > Domains > domain.local > MyBusiness > Computers > SBSComputers
  3. Right-click on “Windows SBS Client – Windows XP Policy” and select Edit
  4. Navigate to:
    Computer Configuration > Policies > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile
  5. In the right-hand panel, right-click on “Windows Firewall: Define inbound program exceptions” or “ Windows Firewall: Define inbound port exceptions” and select Properties
  6. In the window, click the “Show...” button
  7. Enter in required exceptions (see example), then click OK when finished.
For Windows XP Firewall program exception example, use the following as a guide:
%ProgramFiles%\ExampleAppFolder\Example.exe:*:Enabled:Example Program Title
For  Windows XP Firewall port exception example:
23:TCP:*:Enabled:Telnet
Port Number : TCP/UDP: Scope : Enable/Disabled : Port Title

For more information, see the following Microsoft TechNet page:
http://technet.microsoft.com/en-us/library/bb490616.aspx#EBAA

Comments

Post a Comment

Popular posts from this blog

Repair Windows 7 after removing a Linux partition (Dual Boot)

Image
I have seen the appear alot in the forums of people are running a dual boot scenario on their computers, dual-booting Windows with Linux, and no longer want the Linux system. Simply removing the paritions causes Windows to longer boot. In this article I explain how you can fix this problem.

In this article, I will show you how to repair Windows 7 after removing Ubuntu 11.10. Although, this will work regardless of the distribution of Linux you are using.




When you remove the Linux partition(s) you essentially remove the boot loader and screw up the master boot record. This need to be repaired for Windows to work again.

Contents
Removing the Linux PartitionsRepairing Windows Boot LoaderRemoving the Linux Partitions

Boot to Windows 7 and open Computer Management. Do this by either right-clicking My Computer and selecting Manage, or simple search for Computer Management from the Start Menu. Once open, select Disk Management.



Here you will see the layout of the Hard Drive. Right-click and del…
Read more

Office 365 ScanPST to fix corrupted Outlook files

Image
In Office 365, which uses the Click-to-Run technology, Office program files are now in a new location.


When you experience issues with Outlook, often you would use the ScanPST.exe tool to repair PST and OST files with Outlook.

This tool can now be found in the following location:

C:\Program Files\Microsoft Office 15\root\office15\ScanPST.exe
This should apply for both 32-bit and 64-bit installations of Office 365.

Update:

 Microsoft has published a Knowledge Base article list the locations of the ScanPST utility depending on your installation of Office 365. Whether you're using 32 or 64 bit versions.

https://support.microsoft.com/en-us/kb/272227


Read more

Switching/Moving from Evernote to Microsoft OneNote

Image
Update 4 (25-Apr-2016): Microsoft now provide their own tool for migrating you data from Evernote to Microsoft OneNote. See here: https://www.onenote.com/import-evernote-to-onenote

Update 3 (13-Apr-2014): A lot of people in the comments noted a recent issue with the software prompting for both Evernote and LinkedIn passwords unnecessarily. I won't be updating this post any further due to it's age and no longer recommending the conversion software.

Update 2: Microsoft have released a native client for Mac OS X. Also OneNote for Windows is detached from the Office suite and available for free.

Update: A lot of people had issues with this post in that it either they had issues or it did work at all. Problem here is that newer versions of OneNote may have issues with this process. There may be other issues that I am unable to test for.

When doing this guide, keep in mind that it will attempt to export to a new OneNote file. Each notebook in Evernote will become a new OneNote file. So…
Read more