-
March 21st, 2007, 10:43 AM
#1
Managing Windows Firewall remotely
Hello!
Our system deploys its clients (Win32 executables) to machines from NT-domain. It has all the credentials and domain administrator privilleges. However, if the target machine runs Windows XP SP2 or Windows Vista with Windows Firewall enabled, the connection to this machine is not possible even through administration interface (RPC, WMI, DCOM). In this case the firewal settings have to be changed manually before the client deployment in order to open the corresponding ports. This is a bad solution for the enterprise network with hundreds/thousands of machines. We can't use Group Policy Objects for the centralized firewall configuration because the firewall settings have to be applied only to some of the PC's. Besides, Group Policy update is not applied immediately for the domain members.
That's why I have the following question:
Is there any way of changing Windows Firewall settings remotely and programmatically on the certain NT-domain member with all the neccessary credentials for it?
Unfortunately I was unable to find any appropriate workaround so far
Thank you in advance,
Gennadii
-
March 21st, 2007, 06:54 PM
#2
Re: Managing Windows Firewall remotely
Here's a link to the Windows firewall API:
http://msdn2.microsoft.com/en-us/library/aa366415.aspx
I wonder if you can fire off a WMI script remotely to modify the WF in the way you want.
Bear in mind that it *should* be difficult to change the firewall remotely, or it would defeat the entire purpose of it.
Henri Hein
Principal Engineer, Propel
Do not credit Propel with my views or opinions.
-
March 22nd, 2007, 04:40 AM
#3
Re: Managing Windows Firewall remotely
Thanks for the reply
I can' t use WMI since ports for the WMI administration are closed by Windows Firewall
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|