Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1188
  • Last Modified:

"Defer to user" error with "netsh advfirewall" command on Win2008R2

I've used the following command without issue on several Win2008R2 servers in the past, but I'm running into the following error on one particular device.

Command:
netsh advfirewall firewall set rule name=all dir=in remoteip=any new remoteip=localsubnet

Error:
'Defer to user' setting can only be used in a firewall rule where program path and TCP/UDP protocol are specified with no additional scopes

Any ideas?
0
fcoa
Asked:
fcoa
  • 2
1 Solution
 
fcoaAuthor Commented:
I sorted it out... this has to do with the "Edge traversal" setting on inbound rules ("Advanced" tab). Apparently, the "Defer to user" setting cannot be set to "local subnet".

To resolve, I temporarily changed this setting on a handful of rules.  I then ran the command above and reverted the setting on the applicable rules.
0
 
fcoaAuthor Commented:
Sort of annoying to need this manual workaround (particularly if you have several rules at this value), but this appears to be the only solution.  It's much faster than the alternative.
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now