Am I safe off of my domain when I am on the road if my firewall is off by policy and I can't turn it back on?

Posted on 2011-05-02
Last Modified: 2012-08-14
When I take my laptop out of the office I am using the internet wherever I go. I cannot turn my firewall on due to our company's group policy. What are my security risks and what can I do? Can't our group policy be changed to allow access to the VNC? That is the main reason it has been turned off on us.

Question by:Rjaynos
    LVL 12

    Accepted Solution

    The better is to enable windows firewall in portables computers, in special if you use it in publics sites. You can define firewall exceptions to allow some ports or services to your computer. If you use windows 7, you can define that when you are in your domain/home network, the firewall is disabled and when you are in public networks, the firewall is enabled. But this has to be set in the GPO for your domain.

    Ask your domain admin about it and tell him about your concern.
    LVL 12

    Assisted Solution

    You can allow VNC with a exception in a GPO, here is a sample with RDP, but it could be done with VNC

    Here is a sample to allow VNC locally for ever (almost)


    And another way to ask for support is to make sure it's enabled on the workstation.
    Set it up in Group Policy and add Administrators (the group) manually to the Helpers group it asks for.

    Copy this into a shortcut on your desktop.


    Open this shortcut while using an account that has Admin rights locally on the user's workstation.  Bang in the computer name and press connect.

    It's fairly simply.
    LVL 12

    Assisted Solution

    Here a doc to create exceptions with command line netsh in XP


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Threat Intelligence Starter Resources

    Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

    Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
    Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    This video discusses moving either the default database or any database to a new volume.

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now