[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 118
  • Last Modified:

The range of ports is not displayed when a Windows Firewall rule defines a local port range

We are having the exact issue described in Microsoft KB2934842:
The range of ports is not displayed when a Windows Firewall rule defines a local port range.

However, the article applies only to Windows Server 2008 R2 (Win7) and Windows Server 2012 R2 (Win8.1).  We're running Windows Server 2012 (Win8.0), and neither hotfix that's prescribed is compatible with what we're running.

The article also fails to explain whether the issue is merely a superficial display problem, or whether the GPO will not apply the port ranges that don't appear in the Settings pane of the GPMC.

We're desperate to get out a new, large Firewall GPO, but we need to fully understand what may or may not be working.  

Can anyone shed some light on this for us?
0
Dimarc67
Asked:
Dimarc67
  • 2
  • 2
1 Solution
 
MaheshArchitectCommented:
To do what you are trying to do, either add 2008 R2 member server  OR with 2012 R2 member server with GPMC and RSAT for active directory installed and 1st check if the port range is able to view correctly through GPMC viewer

If not, apply appropriate hotfix to these member servers and check if it works

Also you can check on actual workstations if firewall rules are getting applied as expected

You might check from GUI or from netsh
netsh advfirewall firewall show rule name=all
0
 
Dimarc67Author Commented:
Mahesh,

Thanks for the suggestions.  We have 2008 R2 member servers, but the GPMC is unable to correctly display the Settings of any of our GPO's.  We do not have any licenses for 2012 R2, so we can't test that.

We've confirmed that the GPO is being applied correctly, but haven't yet confirmed if the specific ports are being opened.

We've also provided feedback to MS regarding the hole in supporting this issue, but are not expecting any follow up.

At this point, we'll manually check the open ports of systems that receive the GPO to confirm.

Awarding points.

Dimarc67
Frederick, MD
0
 
Dimarc67Author Commented:
Question was not stated concisely, so awarding full points since loose criteria were met.
0
 
MaheshArchitectCommented:
OK
U can download 180 days evaluation 2012 R2 standard version, install it as member server with GPMC and RSAT for AD and check
Also if require install hotfix as per your original link
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now