D
DelJo63
Many find it awkward, clumsy or difficult to configure a software firewall.
As there are several on the scene (and each is configured uniquely), it is
difficult to give a one-shoe-fits-all solution. However, the concepts are
straight forward.
As a leg-up on the process, you might find this tip useful to at lease see your
current settings to allow you to evaluate what needs to be done to fit your environment.
Login as an admin (or right click the Command Prompt shortcut->run as)
then enter netsh firewall show config to see how you're configured.
other options can be seen using netsh firewall show
here's an example of netsh firewall show config
As there are several on the scene (and each is configured uniquely), it is
difficult to give a one-shoe-fits-all solution. However, the concepts are
straight forward.
As a leg-up on the process, you might find this tip useful to at lease see your
current settings to allow you to evaluate what needs to be done to fit your environment.
Login as an admin (or right click the Command Prompt shortcut->run as)
then enter netsh firewall show config to see how you're configured.
other options can be seen using netsh firewall show
here's an example of netsh firewall show config
Domain profile configuration:
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Domain profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No File and Printer Sharing
Allowed programs configuration for Domain profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Port configuration for Domain profile:
Port Protocol Mode Name
-------------------------------------------------------------------
139 TCP Enable NetBIOS Session Service
445 TCP Enable SMB over TCP
137 UDP Enable NetBIOS Name Service
138 UDP Enable NetBIOS Datagram Service
Standard profile configuration:
-------------------------------------------------------------------
Operational mode = Disable
Exception mode = Disable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No File and Printer Sharing
Enable No UPnP Framework
Allowed programs configuration for Standard profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable avginet.exe / C:\Program Files\Grisoft\AVG Free\avginet.exe
Enable avgamsvr.exe / C:\Program Files\Grisoft\AVG Free\avgamsvr.exe
Enable avgcc.exe / C:\Program Files\Grisoft\AVG Free\avgcc.exe
Enable avgemc.exe / C:\Program Files\Grisoft\AVG Free\avgemc.exe
Enable iTunes / C:\Documents and Settings\All Users.WINDOWS\Start Menus\iTunes\iTunes.exe
Enable Bonjour / C:\Program Files\Bonjour\mDNSResponder.exe
Port configuration for Standard profile:
Port Protocol Mode Name
-------------------------------------------------------------------
139 TCP Enable NetBIOS Session Service
445 TCP Enable SMB over TCP
137 UDP Enable NetBIOS Name Service
138 UDP Enable NetBIOS Datagram Service
1900 UDP Enable SSDP Component of UPnP Framework
2869 TCP Enable UPnP Framework over TCP
ICMP configuration for Standard profile:
Mode Type Description
-------------------------------------------------------------------
Enable 8 Allow inbound echo request
Enable 13 Allow inbound timestamp request
Log configuration:
-------------------------------------------------------------------
File location = C:\WINDOWS\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Enable
Local Area Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
Port configuration for Local Area Connection:
Port Protocol Mode Name
-------------------------------------------------------------------
139 TCP Enable bios-name
445 TCP Enable filesharing
Wireless Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
1394 Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
AnyDialUp firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Domain profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No File and Printer Sharing
Allowed programs configuration for Domain profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Port configuration for Domain profile:
Port Protocol Mode Name
-------------------------------------------------------------------
139 TCP Enable NetBIOS Session Service
445 TCP Enable SMB over TCP
137 UDP Enable NetBIOS Name Service
138 UDP Enable NetBIOS Datagram Service
Standard profile configuration:
-------------------------------------------------------------------
Operational mode = Disable
Exception mode = Disable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No File and Printer Sharing
Enable No UPnP Framework
Allowed programs configuration for Standard profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable avginet.exe / C:\Program Files\Grisoft\AVG Free\avginet.exe
Enable avgamsvr.exe / C:\Program Files\Grisoft\AVG Free\avgamsvr.exe
Enable avgcc.exe / C:\Program Files\Grisoft\AVG Free\avgcc.exe
Enable avgemc.exe / C:\Program Files\Grisoft\AVG Free\avgemc.exe
Enable iTunes / C:\Documents and Settings\All Users.WINDOWS\Start Menus\iTunes\iTunes.exe
Enable Bonjour / C:\Program Files\Bonjour\mDNSResponder.exe
Port configuration for Standard profile:
Port Protocol Mode Name
-------------------------------------------------------------------
139 TCP Enable NetBIOS Session Service
445 TCP Enable SMB over TCP
137 UDP Enable NetBIOS Name Service
138 UDP Enable NetBIOS Datagram Service
1900 UDP Enable SSDP Component of UPnP Framework
2869 TCP Enable UPnP Framework over TCP
ICMP configuration for Standard profile:
Mode Type Description
-------------------------------------------------------------------
Enable 8 Allow inbound echo request
Enable 13 Allow inbound timestamp request
Log configuration:
-------------------------------------------------------------------
File location = C:\WINDOWS\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Enable
Local Area Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
Port configuration for Local Area Connection:
Port Protocol Mode Name
-------------------------------------------------------------------
139 TCP Enable bios-name
445 TCP Enable filesharing
Wireless Network Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
1394 Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
AnyDialUp firewall configuration:
-------------------------------------------------------------------
Operational mode = Enable
