Solved

Disable Windows Firewall Using Netsh or GP

Posted on 2004-09-19
7
1,038 Views
Last Modified: 2008-01-09
Hello Experts,
My problem is that the windows Firewall included in XP SP2 blocks most programs i use in my LAN where i don't have a real security danger, how can i disable it using netsh utility or Group policy in 2000 server Domain.
I louked at the MS white paper about SP2 Window Firewall and i didn't found any helpfull information.
 

Please Help
0
Comment
Question by:alaweb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 1

Expert Comment

by:mmbutt
ID: 12095722
I think thats what you are trying to do.

*  From the Windows XP desktop, click Start, click Run, type mmc, and then click OK.
*  On the File menu, click Add/Remove Snap-in.
*  On the Standalone tab, click Add.
*  In the Available Standalone Snap-ins list, click Group Policy Object Editor, and then click Add.
*  In the Select Group Policy Object dialog box, click Browse.
*  In the Browse for a Group Policy Object, click the Group Policy object that you want to update with the new Windows Firewall settings.
*  Click OK.
*  Click Finish to complete the Group Policy Wizard.
*  In the Add Standalone Snap-in dialog box, click Close.
*  In the Add/Remove Snap-in dialog box, click OK.

*  In the console tree, open Computer Configuration, Administrative Templates, Network, Network Connections, and then Windows Firewall.

Detail information
http://www.microsoft.com/downloads/details.aspx?FamilyID=4454e0e1-61fa-447a-bdcd-499f73a637d1&DisplayLang=en
0
 

Author Comment

by:alaweb
ID: 12095904
I tried This, It work on the PCs but i don't want to go to every 80 PC and do this, if this was the case i take the easiet way : Control Pannel > Windows Firewall > Disable
I want a solution like yours but using Windows 2000 Server Group Policy or using a bat file (Netsh) that i can execute on each PC remotly,
Thanks,
Alaweb
0
 
LVL 86

Expert Comment

by:jkr
ID: 12096069
You could use sth. like

netsh firewall set adapter Local Area Connection filtering=disable

or

netsh firewall set adapter Local Area Connection port 80=enable protocol=tcp

See e.g.

http://www.microsoft.com/technet/itsolutions/network/security/ipv6fw/hcfgv601.mspx ("To configure IPv6 Internet Connection Firewall")
http://support.microsoft.com/default.aspx?scid=kb;en-us;839980 ("How to use a script to programmatically open ports for SQL Server to use on systems that are running Windows XP Service Pack 2")

They both address different issues, but serve well as examples.



0
Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

 
LVL 7

Accepted Solution

by:
Worked4me earned 500 total points
ID: 12096469

The netsh command is netsh firewall set opmode disable to disable it on that machine.

Good Luck.
0
 

Author Comment

by:alaweb
ID: 12099926
====================================================
====================================================
It works, I will now Try to deploy it around The entire network.
Thanks Expert :)
====================================================
====================================================
====================================================
0
 
LVL 7

Expert Comment

by:Worked4me
ID: 12100380

  Glad I could help.
0
 

Author Comment

by:alaweb
ID: 12116345
For deployment accross the network i had a problem: to disable Windows firewall the user had to be an administrator i used the runas command which also had a small problem :it prompt for the password, i finally used runas+sanur a utility that complete runas :
the result was like that :
%windir%\system32\runas.exe /user:DOMAIN\AN_ADMIN_USER "the bat file" | \\SERVER\NETLOGON\sanur PASSWORD

http://www.commandline.co.uk/sanur/

Thanks
Alaweb
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Can you find a fax from a vendor you saved a decade ago in seconds? Have you ever cursed your PC under your breath during an audit because you couldn’t find the requested statement or driver history?  If you answered no to the first question or yes …
For both online and offline retail, the cross-channel business is the most recent pattern in the B2C trade space.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question