Solved

"Defer to user" error with "netsh advfirewall" command on Win2008R2

Posted on 2013-05-17
2
1,095 Views
Last Modified: 2013-05-17
I've used the following command without issue on several Win2008R2 servers in the past, but I'm running into the following error on one particular device.

Command:
netsh advfirewall firewall set rule name=all dir=in remoteip=any new remoteip=localsubnet

Error:
'Defer to user' setting can only be used in a firewall rule where program path and TCP/UDP protocol are specified with no additional scopes

Any ideas?
0
Comment
Question by:fcoa
  • 2
2 Comments
 

Accepted Solution

by:
fcoa earned 0 total points
ID: 39175754
I sorted it out... this has to do with the "Edge traversal" setting on inbound rules ("Advanced" tab). Apparently, the "Defer to user" setting cannot be set to "local subnet".

To resolve, I temporarily changed this setting on a handful of rules.  I then ran the command above and reverted the setting on the applicable rules.
0
 

Author Closing Comment

by:fcoa
ID: 39175760
Sort of annoying to need this manual workaround (particularly if you have several rules at this value), but this appears to be the only solution.  It's much faster than the alternative.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Redirected folders in a windows domain can be quite useful for a number of reasons, one of them being that with redirected application data, you can give users more seamless experience when logging into different workstations.  For example, if a use…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question