Solved

How to start windows 2003 firewall from remote desktop?

Posted on 2008-06-24
8
497 Views
Last Modified: 2012-06-21
Hi,

How can I start Windows 2003 Firewall from remote using Remote Desktop without blocking the remote desktop for future connections?

Thank you,
Michael
0
Comment
Question by:clickleaders
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +2
8 Comments
 
LVL 19

Expert Comment

by:Stephen Manderson
ID: 21863400
Hi  there

You need to be a little more clear with your question in order for us to help. Are you using ISA or not?

Have you enabled the allow remote access in the computer propertes "Remote" tab?

Regards
Steve
0
 

Author Comment

by:clickleaders
ID: 21863597
I'm not in the US.
This is a remote Windwos 2003 server located in US.
The only way I can currently access it is via Remote Desktop (currently working fine).

I want to enable the Windows Firewall Service from Remote.
I want to be able to enter this computer using the Remote Desktop after the Firewall will work.

If not mistaken, this mean I have to enable an exception for Remote Desktop *BEFORE* I start the service.

How can I do that?

Thanks,
Michael
0
 
LVL 2

Expert Comment

by:mkaustubh
ID: 21864205
Hi,
Even if you are able to start the firewall service remotely then also you will have to be on the Firewall itself to configure the Exceptions for Remote Desktop.

1.When you are able to start the firewall remotely (Using MMC,RDP etc).
2.One has to be PHYSICALLY present on to the firewall to add the exceptions.

Exception would be:

Open the command Prompt and type:
netsh firewall add portopening TCP 3389 .

Hope this helps!
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 
LVL 2

Expert Comment

by:mkaustubh
ID: 21864299
Think this way that if the OS allows to "push the exceptions remotly" then it would have been easy for hacker and play with the machine..

Moreover if the firewall service is not started then you cannot create an exception.
You would have got an error something like:


netsh firewall>add portopening TCP 3389 RDP
The service has not been started.

So firewall has to be started first which can be started remotely ,however for creating exception you can either push it through a Group policy for this specific machine {Creating a logon script using the above command in startup script)...OR u can go and tun this cmd manually.

Cheers!

0
 
LVL 17

Expert Comment

by:kadadi_v
ID: 21864333
I am confused with your question it means you are logging to remote win2003 server using RDP client and you want to start the firewall service of win2k3 server and if you start the firewall service then your login access is not possible ..right...? How can you open the port 3389 for terminal serices and if you enabled the firewall you have to start the firewall/ICS service and it changes the serer local ip adddress to 192.168.0.1.

Regards,

VIjay Kadadi
0
 
LVL 6

Expert Comment

by:Nyah247
ID: 21910969
I am also a bit confused by the wording of your question...  You can add remote exceptions to the firewall by using psexec from the PSTOOLs set on Microsoft's system internals site.  

The commands would then be:

psexec \\machinenameorIP cmd

when the cmd opens it will be your remote computer's cmd

Netsh firewall add portopening TCP 3389 TCP3389 ENABLE CUSTOM yourmachineIP ALL

I would double check these commands because this may be a little different for Vista as I have only used these on XP.
0
 

Accepted Solution

by:
clickleaders earned 0 total points
ID: 21914138
The solution is very simple

1. Start the Firewall service. The Firewall window will open but the firewall is still set to "OFF".
2. Set the exception for accepting "Remote Desktop".
3. Set the firewall to On

That's it

Michael
0
 
LVL 6

Expert Comment

by:Nyah247
ID: 21915550
Ahh...  I misunderstood your question.  Glad you figured it out.  
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question