firewall status 2008 R2

is there a command you can run on a windows 2008 R2 server to determine if the local firewall is enabled?
LVL 3
pma111Asked:
Who is Participating?
 
Aditya AroraConnect With a Mentor Network & Hardware Commented:
hello,

please use the below command

>netsh advfirewall show allprofiles

and u get result as below

Domain Profile Settings:
----------------------------------------------------------------------
State                                 ON
Firewall Policy                       BlockInbound,AllowOutbound
LocalFirewallRules                    N/A (GPO-store only)
LocalConSecRules                      N/A (GPO-store only)
InboundUserNotification               Enable
RemoteManagement                      Disable
UnicastResponseToMulticast            Enable

Logging:
LogAllowedConnections                 Disable
LogDroppedConnections                 Disable
FileName                              %systemroot%\system32\LogFiles\Firewall\pfirewall.lo
g
MaxFileSize                           4096


Private Profile Settings:
----------------------------------------------------------------------
State                                 ON
Firewall Policy                       BlockInbound,AllowOutbound
LocalFirewallRules                    N/A (GPO-store only)
LocalConSecRules                      N/A (GPO-store only)
InboundUserNotification               Enable
RemoteManagement                      Disable
UnicastResponseToMulticast            Enable

Logging:
LogAllowedConnections                 Disable
LogDroppedConnections                 Disable
FileName                              %systemroot%\system32\LogFiles\Firewall\pfirewall.lo
g
MaxFileSize                           4096


Public Profile Settings:
----------------------------------------------------------------------
State                                 ON
Firewall Policy                       BlockInbound,AllowOutbound
LocalFirewallRules                    N/A (GPO-store only)
LocalConSecRules                      N/A (GPO-store only)
InboundUserNotification               Enable
RemoteManagement                      Disable
UnicastResponseToMulticast            Enable

Logging:
LogAllowedConnections                 Disable
LogDroppedConnections                 Disable
FileName                              %systemroot%\system32\LogFiles\Firewall\pfirewall.lo
g
MaxFileSize                           4096

Ok.
0
 
Monica PSoftware DeveloperCommented:
You can turn on firewall for the current network profile

netsh advfirewall set currentprofile state on

Turn off firewall for the current profile:

netsh advfirewall set  currentprofile state off

For more refer below links'

http://www.windows-commandline.com/enable-disable-firewall-command-line/

http://www.winhelponline.com/blog/enable-and-disable-windows-firewall-quickly-using-command-line/
0
 
pma111Author Commented:
rather than turn it on or off, how can you tell if it is currently turned on or not
0
 
MaheshArchitectCommented:
Just run below command to check current state of private profile, public profile and domain profile for windows firewall

netsh advfirewall show allprofiles state

You can enable or disable firewall for all profiles with below command through elevated command prompt

netsh advfirewall set allprofiles state off  - disable firewall for all profiles
netsh advfirewall set allprofiles state on  - enable firewall for all profiles

Mahesh
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.