Windows firewall service is stopped on Windows Container RRS feed

  • Question

  • Hi,

    I have a machine with Microsoft 2016 Server DataCenter, in which docker tool is preinstalled. On the docker environment i have pulled a microsoft/windowsservercore image from docker hub & run a container on this image. When i get the services list running on this container, the Windows Firewall service status is stopped. I have tried to start it but not able to start it.

    Is there any way to start Windows Firewall service on container. I have tried all the powershell/CMD command but not able to do it.

    Any help appreciated.

    Thank you.

    Friday, July 14, 2017 3:31 PM


  • Hi,

    That is by design. The windows firewall is used to enforce network through port ACLs. By default all containers endpoints attached to an overlay network have an allow all rule created. 

    Windows server containers use windows host's firewall (enlightened with network compartments)

    Default outbound ---> allow all

    Default inbound: Deny all except common dhcp,dns,icmp etc.

    Hyper-V containers have isolated kernel and run their own instance of firewall.

    Default allow all in win firewall.

    If you found this post helpful, please give it a "Helpful" vote. 
    Please remember to mark the replies as answers if they help.

    • Marked as answer by vipinsharma04 Friday, July 28, 2017 12:34 PM
    Thursday, July 27, 2017 9:34 PM