Solved

"Defer to user" error with "netsh advfirewall" command on Win2008R2

Posted on 2013-05-17
2
1,118 Views
Last Modified: 2013-05-17
I've used the following command without issue on several Win2008R2 servers in the past, but I'm running into the following error on one particular device.

Command:
netsh advfirewall firewall set rule name=all dir=in remoteip=any new remoteip=localsubnet

Error:
'Defer to user' setting can only be used in a firewall rule where program path and TCP/UDP protocol are specified with no additional scopes

Any ideas?
0
Comment
Question by:fcoa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 

Accepted Solution

by:
fcoa earned 0 total points
ID: 39175754
I sorted it out... this has to do with the "Edge traversal" setting on inbound rules ("Advanced" tab). Apparently, the "Defer to user" setting cannot be set to "local subnet".

To resolve, I temporarily changed this setting on a handful of rules.  I then ran the command above and reverted the setting on the applicable rules.
0
 

Author Closing Comment

by:fcoa
ID: 39175760
Sort of annoying to need this manual workaround (particularly if you have several rules at this value), but this appears to be the only solution.  It's much faster than the alternative.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question