?
Solved

The range of ports is not displayed when a Windows Firewall rule defines a local port range

Posted on 2014-11-20
4
Medium Priority
?
117 Views
Last Modified: 2014-11-21
We are having the exact issue described in Microsoft KB2934842:
The range of ports is not displayed when a Windows Firewall rule defines a local port range.

However, the article applies only to Windows Server 2008 R2 (Win7) and Windows Server 2012 R2 (Win8.1).  We're running Windows Server 2012 (Win8.0), and neither hotfix that's prescribed is compatible with what we're running.

The article also fails to explain whether the issue is merely a superficial display problem, or whether the GPO will not apply the port ranges that don't appear in the Settings pane of the GPMC.

We're desperate to get out a new, large Firewall GPO, but we need to fully understand what may or may not be working.  

Can anyone shed some light on this for us?
0
Comment
Question by:Dimarc67
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Accepted Solution

by:
Mahesh earned 2000 total points
ID: 40458268
To do what you are trying to do, either add 2008 R2 member server  OR with 2012 R2 member server with GPMC and RSAT for active directory installed and 1st check if the port range is able to view correctly through GPMC viewer

If not, apply appropriate hotfix to these member servers and check if it works

Also you can check on actual workstations if firewall rules are getting applied as expected

You might check from GUI or from netsh
netsh advfirewall firewall show rule name=all
0
 
LVL 4

Author Comment

by:Dimarc67
ID: 40458324
Mahesh,

Thanks for the suggestions.  We have 2008 R2 member servers, but the GPMC is unable to correctly display the Settings of any of our GPO's.  We do not have any licenses for 2012 R2, so we can't test that.

We've confirmed that the GPO is being applied correctly, but haven't yet confirmed if the specific ports are being opened.

We've also provided feedback to MS regarding the hole in supporting this issue, but are not expecting any follow up.

At this point, we'll manually check the open ports of systems that receive the GPO to confirm.

Awarding points.

Dimarc67
Frederick, MD
0
 
LVL 4

Author Closing Comment

by:Dimarc67
ID: 40458326
Question was not stated concisely, so awarding full points since loose criteria were met.
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 40458361
OK
U can download 180 days evaluation 2012 R2 standard version, install it as member server with GPMC and RSAT for AD and check
Also if require install hotfix as per your original link
0

Featured Post

Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

My GPO's made for 2008 R2 servers were not allowing me to RDP into a new 2012 server by default.  That’s why I tried to allow RDP via Powershell, because I could log into a remote shell without further configuration. Below I will describe how I wen…
Every now and then, Microsoft does something that totally impresses me. It doesn't happen often, but in this case I must say I am thoroughly impressed with Windows Server Backup. One of the long time issues with Windows Backup has been the ability t…
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
In this Micro Tutorial viewers will learn how to restore single file or folder from Bare Metal backup image of their system. Tutorial shows how to restore files and folders from system backup. Often it is not needed to restore entire system when onl…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question