Solved

SBS 2011 Firewall Off after migration

Posted on 2013-01-27
5
473 Views
Last Modified: 2013-01-31
I have just carried out a migration from SBS 2003 with ISA server to SBS 2011 standard.
Unfortunately the server firewall and all client firewalls are switched off on the domain somewhere in group policy but I cannot find out where. I want them switched back on preferrably with the abilty to switch them off temporairly if needs must to test issues.
I have also had a problem with the ISA proxy settings keeping switching on even though they were set to not configured. To get round that I had to set the proxy as configured but with no port or IP address in the Internet Explorer settings in Group Policy.
The firewall is givving me more of a headache though.
0
Comment
Question by:gogsck
  • 3
  • 2
5 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
Comment Utility
Have you removed the ISA firewall client from all work stations post-migration?

To set the proxy through group policy can be undertaken using this guide.
http://kb.k12usa.com/Knowledgebase/Windows-2008-Group-Policies-for-Internet-Explorer

To set the windows firewall as on is from this one.
edit the domain policy - assuming you want this across the full domain.
computer config, policies, windows settings, security settings, Windows firewall with advanced security.

Expand this section then right-click the top node (usually includes ldap://guid address ion the title) and select properties. You can edit it all from here.

This is for server 2012 but 2011 is not that different I believe in regards to gpo.
0
 

Author Comment

by:gogsck
Comment Utility
I have already looked at that for the Proxy. The proxy was set as not configured but was still adding a proxy on IE. To get round that I had to set it to enable the Porxy and leave the IP address and port fields empty. The ISA client has never been installed on the client PCs.
I have a bigger problem with the Client and server firewalls. They are Off for the Domain and I want them on
0
 

Author Comment

by:gogsck
Comment Utility
Just had another look at the Firewall settings. And that was set to OFF for domain so I have set it to not configured. It has sorted the server but I will have to check the clients later when I get on site. Don't know how how I missed that one..
Thanks for your help
0
 
LVL 51

Expert Comment

by:Keith Alabaster
Comment Utility
Welcome :)

However, not configured may not fix it.... Not configured means (usually) that no policy is set and therefore use what has been set locally but we'll see.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
Comment Utility
Thanks
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
ActiveSync issues 16 132
SBS 2011 Event ID 36888 SChannel 1 82
Small Business Network Solution 9 75
SBS 2011 Server Firewall Export Error 2 32
I have been asked to explain on many, many occasions the correct way to setup network cards and DNS settings on ISA Server 2004, 2006 and forefront Threat management gateway (FTMG) and have willing done so. I have also promised my self everytime tha…
I’m often asked about newer and larger USB drives connected to SBS2008 and 2011 failing Windows Server Backup vs the older USB drives not failing. As disk space continues to grow and drive technology change SBS2008 and some SBS2011 end up with the f…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now