• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 991
  • Last Modified:

Best practice question on Windows firewall

Why is it best practice to disable Windows firewall for computers bound to the domain?  What kinds of problems can this create when Windows firewall is enabled?
1 Solution
You don't have to disable it. The reason to disable it so you don't have to find out all ports that use for different services and create rules for them in GPO.

If you have a firewall traffic has to pass through external that is locked down so only restricted ports are enabled HTTP/HTTPS/IMAP/POP3/etc. then there is no needed for it as your external facing firewall is more secure and reliable.

However having the client firewall on does provide another layer of protection but makes for an administrative headache on networks which use a lot of protocols.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now