How do I remove block rules from 2012 firewall that have a rule source of Local Group Policy Setting
Posted on 2014-01-15
I have a 2012 R2 DC that sits on my domain. There are 4 inbound BLOCK rules in the firewall which are preventing File and Print sharing from working. I wish to eliminate these rules. When viewing the properties of these rules there is a message at the top saying :
This rule has been applied by the systems administrator and cannot be modified
The Rule Source column indicates that these rules are from "Local Group Policy Setting". However, when I run
gpedit.msc to open Local Group Policy Editor, on the server, I can see no firewall rules defined. I looked in 2 places (below) within the Local Group Policy Editor and these are :-
Computer Configurations, Administrative Templates, Network, Network Connections, Windows Firewall ::: everything is "Not configured"
Computer Configurations, Policies, Windows Settings, Security Settings, Windows Firewall ::: "Windows Firewall State is not configured"
I have configured the firewall to add the Predefined ALLOW rules for File and Print Sharing. These come up as
expected in the Inbound rules with a source of "Local Setting".
The log files on the firewall confirmed that my client file requests, to the server, were being dropped on based on the port.
The rules which are preventing file and print services from working are :-
NetBIOS Datagram Service Block All programs UDP 138
NetBIOS Name Service Block All programs UDP 137
NetBIOS Session Service Block All programs TCP 139
SMB over TCP Block All programs TCP 445
Any help with this much appreciated. I would very much like to know where these 4 Block rules are coming from and how I might eradicate them.
Screen shot of firewall and offending rules attached.