SBS 2011 Firewall for connected desktops

Posted on 2012-09-14
Medium Priority
Last Modified: 2012-09-14
I would like to allow only specific computers on the network to disable the windows firewall.  We have an older piece of software that communicates with a Xerox 6204 through the network and it will only successfully communicate when the firewall is off.  I have the software added to the exceptions list but this does not seem to matter.  Any advice is appreciated.
Question by:EMB_Corporation
  • 2
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 38400360
The firewall is handled by a Group Policy on your SBS 2011.  You can create exceptions to that by denying delegation of the policy to the specific computers.  

I suggest that you create a security group and add the computers you want to affect to that group.  Then when you set the deny config in the GPO you can just list the Security Group.

Info on how to configure this is here:  http://support.microsoft.com/kb/816100

LVL 74

Accepted Solution

Jeffrey Kane - TechSoEasy earned 2000 total points
ID: 38400378
On second thought... SBS 2011's Group Policy is a comprehensive "Client" policy... which includes things other than the Firewall.

The GPO's are:
Windows SBS Client - Windows 7 and Windows Vista Policy
Windows SBS Client - Windows XP Policy

If you fully deny these to some machines, those machines will not get other important settings.

So, my other solution would be to use SysInternals ProcMon (http://live.sysinternals.com/procmon.exe) to see exactly which port might need to be added to the firewall exceptions on the workstations.


Author Closing Comment

ID: 38400993
Thanks for the help.

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A lot of problems and solutions are available on the net for the error message "Source server does not meet minimum requirements for migration" while performing a migration from Small Business Server 2003 to SBS 2008. This error pops up just before …
Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
Despite its rising prevalence in the business world, "the cloud" is still misunderstood. Some companies still believe common misconceptions about lack of security in cloud solutions and many misuses of cloud storage options still occur every day. …
How can you see what you are working on when you want to see it while you to save a copy? Add a "Save As" icon to the Quick Access Toolbar, or QAT. That way, when you save a copy of a query, form, report, or other object you are modifying, you…
Suggested Courses

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question