locked
Managing Windows Firewall remotely RRS feed

  • Question

  • Hello!

    Our system deploys its clients (Win32 executables) to machines from NT-domain. It has all the credentials and domain administrator privilleges. However, if the target machine runs Windows XP SP2 or Windows Vista with Windows Firewall enabled, the connection to this machine is not possible even through administration interface (RPC, WMI, DCOM). In this case the firewal settings have to be changed manually before the client deployment in order to open the corresponding ports. This is a bad solution for the enterprise network with hundreds/thousands of machines. We can't use Group Policy Objects for the centralized firewall configuration because the firewall settings have to be applied only to some of the PC's. Besides, Group Policy update is not applied immediately for the domain members.

    That's why I have the following question:

    Is there any way of changing Windows Firewall settings remotely and programmatically on the certain NT-domain member with all the neccessary credentials for it?

    Thanks,
    Gennadii
    Thursday, March 22, 2007 10:09 AM

All replies

  • You either have to use Group Policy or a logon script that runs appropriate netsh firewall commands. There is no other way to remotely configure firewall settings.
    Thursday, March 22, 2007 2:05 PM