windows 2008 R2 advanced firewall netsh syntax

Hi,

I'm experimenting with using the Windows 2008 R2 firewall to block external IP addresses from accessing one of our public facing servers.  I turned on the firewall and allowed all incoming public connections as a default with the intent to block those who were undesirable (hacking attempts, etc.).

I entered the following test netssh command at a command prompt:

netssh advfirewall add rule name="Blocked" dir=in action=block remoteip=198.45.116.0/22

And got this as a result:
The following command was not found: advfirewall add rule name=Blocked dir=in action=block remoteip=198.45.116.0/22

This is under Windows 2008 R2 standard.

?

Once this does work, if I wanted to have multiple remote IP addresses, how would I do that?  Can I add them to an existing rule, or do I have to make a new rule each time?

Thanks much!

--Ben
Ben ConnerCTO, SAS developerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ChrisCommented:
Pretty sure the syntax is:

netsh advfirewall firewall add rule . . .
0
ChrisCommented:
You are also able to update exisisting rules using the "set rule" command. For explample, to add the ip 10.10.10.10 to your existing rule, you'd use the following command:

netsh advfirewall firewall set rule name="Blocked" new remoteip=198.45.116.0/22,10.10.10.10
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Ben ConnerCTO, SAS developerAuthor Commented:
Sigh.  Can't tell you how long I stared at that...  Thanks much!

--Ben
0
ChrisCommented:
Glad to help. I know how it feels. Sometimes you just need a fresh pair of eyes!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.