Solved

Windows built in firewall- setup- prerequisites- advice for first time turning on of firewall

Posted on 2012-03-19
2
216 Views
Last Modified: 2012-03-20
I was wondering if anyone had any good tips or warnings about turning on the 'built in firewall' for Server 2008. It is presently off.  I have everything finished and configured ready to launch my website except a firewall.(my developer overlooked it, uh yeah big mistake!!) I am so scared and worried about turning it on so it does not mess anything up because things are running perfect this firewall is my last huge hurdle.  I do know that the most important thing is to make sure Remote Desktop Connection is turned on, so I do not lock myself out of the computer! (its hosted miles and miles away) **I have an Exchange server 2010 running on Server 2008 Standard**. I do have some *SQL database* where people type in info as well that I need stored. Will all these databases and Exchange have to be configured manually?  I have heard the firewall will usually pickup what needs to be allowed and not allowed. This is of course if the programs are Microsoft based, making an easier configuration. Is this true? I am so unsure. I just cannot find any real specifics on typical configurations. ( I do know every server is different but I just need some real expert opinions)  I have been reading up on the firewall issues but I wanted to give the experts here a chance to help a hardware guy out. This is a family website that will hopefully get us back on our feet, all opinions are welcome. My family really needs to launch this site.
0
Comment
Question by:jeffmeverett
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 82

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points
ID: 37740736
You should always have the firewall turned on. Sql Server doesn't need to access or be accessed by any other computer but it could be located on another computer and you then have to configure the firewall AND Sql Server to allow tcpip access.

If you are on a highly desirable site, then your machine may already be owned with having the firewall off for so long. The rule these days is always have the firewall on, and then only open ports as needed.

You should not have your web server, sql database and exchange running on the same server, and you should always have 2 or more domain controllers.

Since you have RDP open to the world I hope you've installed the latest string of updates as RDP was one of the vulnerabilities and proof of concept code is in the wild
0
 

Author Closing Comment

by:jeffmeverett
ID: 37743809
The response has a great deal of things to take a look at and make sure are configured properly. Being as 'green' as I am to the firewall configurations, I would have loved  step by step instructions. Since this question could have been answered so many different way I feel this is an acceptable solution for only having a limited description by me. Thanks for all your help. I will do my best to improve my descriptions in future questions.
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question