[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 256
  • Last Modified:

Am I safe off of my domain when I am on the road if my firewall is off by policy and I can't turn it back on?

When I take my laptop out of the office I am using the internet wherever I go. I cannot turn my firewall on due to our company's group policy. What are my security risks and what can I do? Can't our group policy be changed to allow access to the VNC? That is the main reason it has been turned off on us.

0
Rjaynos
Asked:
Rjaynos
  • 3
3 Solutions
 
serchlopCommented:
The better is to enable windows firewall in portables computers, in special if you use it in publics sites. You can define firewall exceptions to allow some ports or services to your computer. If you use windows 7, you can define that when you are in your domain/home network, the firewall is disabled and when you are in public networks, the firewall is enabled. But this has to be set in the GPO for your domain.

Ask your domain admin about it and tell him about your concern.
0
 
serchlopCommented:
You can allow VNC with a exception in a GPO, here is a sample with RDP, but it could be done with VNC
http://www.twistedethics.com/2009/01/06/how-to-enable-remote-desktop-via-group-policy/

Here is a sample to allow VNC locally for ever (almost)
http://www.ehow.com/how_5913936_enter-vnc-firewall-exception.html

***************************************************************************************************************

And another way to ask for support is to make sure it's enabled on the workstation.
Set it up in Group Policy and add Administrators (the group) manually to the Helpers group it asks for.

Copy this into a shortcut on your desktop.

hcp://CN=Microsoft%20Corporation,L=Redmond,S=Washington,C=US/Remote%20Assistance/Escalation/Unsolicited/unsolicitedrcui.htm

Open this shortcut while using an account that has Admin rights locally on the user's workstation.  Bang in the computer name and press connect.

It's fairly simply.
0
 
serchlopCommented:
Here a doc to create exceptions with command line netsh in XP

http://www.infosecwriters.com/text_resources/pdf/winxp_firewall_PShah.pdf

0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now