View Full Version : SP2 Firewall Exceptions
Steve Athanas
March 3rd 05, 05:47 PM
Hi, everyone:
Does anyone know of a way to get Windows Firewall to allow access on all
ports to a specified IP address or subnet? I ask because I can allow specific
ports, but wildcards like "*" don't seem to work.
Ideally, this would be done through group policy, but any means necessary
would be a good start.
Any thoughts out there?
--
Steve Athanas
Systems Analyst / Administrator
UMass Lowell Student Affairs
Cumnock Hall
1 University Ave.
Lowell, MA 01854
Taurarian
March 6th 05, 02:58 AM
Not sure if this is helpful but you may wish to have a look
http://www.microsoft.com/technet/community/columns/cableguy/cg0204.mspx
Manually Configuring Windows Firewall in Windows XP Service Pack 2
http://support.microsoft.com/default.aspx?kbid=843090&product=windowsxpsp2
Description of the Windows Firewall feature in Windows XP Service Pack 2
Troubleshooting Windows Firewall settings in Windows XP Service Pack 2
http://support.microsoft.com/default.aspx?kbid=875357
Steve Athanas wrote:
> Hi, everyone:
>
> Does anyone know of a way to get Windows Firewall to allow access on
> all ports to a specified IP address or subnet? I ask because I can
> allow specific ports, but wildcards like "*" don't seem to work.
>
> Ideally, this would be done through group policy, but any means
> necessary would be a good start.
>
> Any thoughts out there?
David Beder [MSFT]
March 6th 05, 09:30 AM
The ipsec bypass feature can be used for this purpose. It relies on the
authentication of the other peer using ipsec, then consults the Active
Directory against a group policy defined set of allowed computers which can
access all ports. This is really only going to be available in a corporate
environment.
--
David
Microsoft Windows Networking
This posting is provided "AS IS" with no warranties, and confers no rights.
"Steve Athanas" > wrote in message
...
> Hi, everyone:
>
> Does anyone know of a way to get Windows Firewall to allow access on all
> ports to a specified IP address or subnet? I ask because I can allow
> specific
> ports, but wildcards like "*" don't seem to work.
>
> Ideally, this would be done through group policy, but any means necessary
> would be a good start.
>
> Any thoughts out there?
> --
> Steve Athanas
> Systems Analyst / Administrator
>
> UMass Lowell Student Affairs
> Cumnock Hall
> 1 University Ave.
> Lowell, MA 01854
vBulletin® v3.6.4, Copyright ©2000-2012, Jelsoft Enterprises Ltd.