Help with the Windows Firewall and Group Policy (Standard Profile)

I have a few users that have laptops (XP SP2) here at the office.  I am running Server 2003 and I am trying to setup a Group Policy that will disable the Windows firewall when the laptop is here in the office but enable the Windows firewall when they are off the domain.  

I have enabled the firewall under the Domain Profile in the GPOE and disabled the firewall under the Standard Profile.  When I test these settings, the laptop when connected to the domain has the firewall enabled.  Obviously, this is not what I want.  If I change the Group Policy under the Standard Profile to disable the firewall and reapply the GP, the laptop disables the firewall as it should.

Any thoughts on how I can achieve what I am looking for?  
csimmons1324IT ManagerAsked:
Who is Participating?
csimmons1324IT ManagerAuthor Commented:
I found the solution:

Within the GPO Editor:

- Computer Configuration
  - Network
    - Network Connections
      - Windows Firewall

Disable "Windows Firewall: Protect all network connections" within the Domain Profile and the Standard Profile.

Please refund the points and close this question.

A possible alternative could be to use a logon / logoff script.

When logging in, the login script is executed : netsh firewall set opmode enable.

When the user logs out of the domain, the logoff script  is executed : netsh firewall set opmode disable.


Closed, 500 points refunded.
Friendly Neighbourhood Community Support Moderator
I'm having the same issue but I don't see how the solution is accomplishing the goal of ENABLING the firewall when its OFF the domain.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.