windows advanced firewall simple config

标签：creating   shell   run   ESS   intern   enabled   com   create   The   

There is a underlying policy‘s under the policies: deny all
what we need to do is create the explicit allow policies

what we need to do:

1. under the inbound scope:
2. disable all of other allow rules or connections will still make it through from them

3. run the command below
   netsh advfirewall firewall add rule name="Allow from Internal Access" dir=in action=allow protocol=ANY remoteip=172.16.11.0/24
   172.16.15.0/24
   172.16.10.0/24
   172.16.30.0/24
   Or powershell:
   New-NetFirewallRule -Name Allow192.0.2.55 -DisplayName ‘Allow from 192.0.2.55‘ -Enabled True -Direction Inbound -Protocol ANY -Action Allow -Profile ANY -RemoteAddress 172.16.15.0/24

4. Restart the Firewall service after creating the rules

windows advanced firewall simple config

标签：creating   shell   run   ESS   intern   enabled   com   create   The   

原文地址：https://blog.51cto.com/zhangfang526/2478150