Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Help with the Windows Firewall and Group Policy (Standard Profile)

Posted on 2007-10-03
Medium Priority
Last Modified: 2008-01-09
I have a few users that have laptops (XP SP2) here at the office.  I am running Server 2003 and I am trying to setup a Group Policy that will disable the Windows firewall when the laptop is here in the office but enable the Windows firewall when they are off the domain.  

I have enabled the firewall under the Domain Profile in the GPOE and disabled the firewall under the Standard Profile.  When I test these settings, the laptop when connected to the domain has the firewall enabled.  Obviously, this is not what I want.  If I change the Group Policy under the Standard Profile to disable the firewall and reapply the GP, the laptop disables the firewall as it should.

Any thoughts on how I can achieve what I am looking for?  
Question by:csimmons1324

Expert Comment

ID: 20009542

A possible alternative could be to use a logon / logoff script.

When logging in, the login script is executed : netsh firewall set opmode enable.

When the user logs out of the domain, the logoff script  is executed : netsh firewall set opmode disable.



Accepted Solution

csimmons1324 earned 0 total points
ID: 20217008
I found the solution:

Within the GPO Editor:

- Computer Configuration
  - Network
    - Network Connections
      - Windows Firewall

Disable "Windows Firewall: Protect all network connections" within the Domain Profile and the Standard Profile.

Please refund the points and close this question.

Expert Comment

ID: 20610277
Closed, 500 points refunded.
Friendly Neighbourhood Community Support Moderator

Expert Comment

ID: 21803130
I'm having the same issue but I don't see how the solution is accomplishing the goal of ENABLING the firewall when its OFF the domain.

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Loops Section Overview
The Relationships Diagram is a good way to get an overall view of what a database is keeping track of. It is also where relationships are defined. A relationship specifies how two tables connect to each other. As you build tables in Microsoft Ac…

577 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question