?
Solved

Disable Windows Firewall Using Netsh or GP

Posted on 2004-09-19
7
Medium Priority
?
1,041 Views
Last Modified: 2008-01-09
Hello Experts,
My problem is that the windows Firewall included in XP SP2 blocks most programs i use in my LAN where i don't have a real security danger, how can i disable it using netsh utility or Group policy in 2000 server Domain.
I louked at the MS white paper about SP2 Window Firewall and i didn't found any helpfull information.
 

Please Help
0
Comment
Question by:alaweb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 1

Expert Comment

by:mmbutt
ID: 12095722
I think thats what you are trying to do.

*  From the Windows XP desktop, click Start, click Run, type mmc, and then click OK.
*  On the File menu, click Add/Remove Snap-in.
*  On the Standalone tab, click Add.
*  In the Available Standalone Snap-ins list, click Group Policy Object Editor, and then click Add.
*  In the Select Group Policy Object dialog box, click Browse.
*  In the Browse for a Group Policy Object, click the Group Policy object that you want to update with the new Windows Firewall settings.
*  Click OK.
*  Click Finish to complete the Group Policy Wizard.
*  In the Add Standalone Snap-in dialog box, click Close.
*  In the Add/Remove Snap-in dialog box, click OK.

*  In the console tree, open Computer Configuration, Administrative Templates, Network, Network Connections, and then Windows Firewall.

Detail information
http://www.microsoft.com/downloads/details.aspx?FamilyID=4454e0e1-61fa-447a-bdcd-499f73a637d1&DisplayLang=en
0
 

Author Comment

by:alaweb
ID: 12095904
I tried This, It work on the PCs but i don't want to go to every 80 PC and do this, if this was the case i take the easiet way : Control Pannel > Windows Firewall > Disable
I want a solution like yours but using Windows 2000 Server Group Policy or using a bat file (Netsh) that i can execute on each PC remotly,
Thanks,
Alaweb
0
 
LVL 86

Expert Comment

by:jkr
ID: 12096069
You could use sth. like

netsh firewall set adapter Local Area Connection filtering=disable

or

netsh firewall set adapter Local Area Connection port 80=enable protocol=tcp

See e.g.

http://www.microsoft.com/technet/itsolutions/network/security/ipv6fw/hcfgv601.mspx ("To configure IPv6 Internet Connection Firewall")
http://support.microsoft.com/default.aspx?scid=kb;en-us;839980 ("How to use a script to programmatically open ports for SQL Server to use on systems that are running Windows XP Service Pack 2")

They both address different issues, but serve well as examples.



0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 7

Accepted Solution

by:
Worked4me earned 1500 total points
ID: 12096469

The netsh command is netsh firewall set opmode disable to disable it on that machine.

Good Luck.
0
 

Author Comment

by:alaweb
ID: 12099926
====================================================
====================================================
It works, I will now Try to deploy it around The entire network.
Thanks Expert :)
====================================================
====================================================
====================================================
0
 
LVL 7

Expert Comment

by:Worked4me
ID: 12100380

  Glad I could help.
0
 

Author Comment

by:alaweb
ID: 12116345
For deployment accross the network i had a problem: to disable Windows firewall the user had to be an administrator i used the runas command which also had a small problem :it prompt for the password, i finally used runas+sanur a utility that complete runas :
the result was like that :
%windir%\system32\runas.exe /user:DOMAIN\AN_ADMIN_USER "the bat file" | \\SERVER\NETLOGON\sanur PASSWORD

http://www.commandline.co.uk/sanur/

Thanks
Alaweb
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you build your web application in Visual Studio you'll get at least a few binaries, or .DLL, files in your bin folder. However, there is more compiling to be done. Normally this would happen when an ASP.NET resource within the web site is request…
cPanel is a Unix based web hosting control panel that provides a graphical interface and automation tools designed to simplify the process of hosting a web site. cPanel utilizes a 3 tier structure that provides functionality for administrators, rese…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses
Course of the Month7 days, 23 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question