Re: server firewall
- From: "Miha Pihler [MVP]" <mihap-news@xxxxxxxxxxx>
- Date: Wed, 2 Nov 2005 20:53:54 +0100
Hi,
If you want to disable personal firewall settings locate the policy that is
pushing firewall settings down to clients. RSoP should tell you which group
policy that is -- but my guess is it is Default Domain Policy. If it is
so -- edit Default Domain policy under
Computer Configuration\Administrative Templates\Network\Network
Connections\Windows Firewall\
under Domain Profile or Standard Profile ... and set the options to Disable.
Refresh the policy on the clients once you are done editing it. Once the
clients refresh the policy they will turn off the firewalls and any new
clients will not turn it on under this policy.
Help: Administering Windows Firewall with Group Policy
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/2f56f19e-b9da-4530-8772-f37d2302255e.mspx
What Is Group Policy Object Editor?
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/TechRef/47ba1311-6cca-414f-98c9-2d7f99fca8a3.mspx
--
Mike
Microsoft MVP - Windows Security
"Jon Straub" <jon@xxxxxxxxxxxxx> wrote in message
news:%23ExsQ793FHA.1596@xxxxxxxxxxxxxxxxxxxxxxx
> Thanks that helps.
>
> I found Computer Configuration\Administrative Templates\extra registry
> settings
>
> in this folder there are many firewall settings
>
> should I just turn them all of or detele them from the registry.
>
> and how can I setup server 2003 so that it doesn't add these firewall
> controls to the client computer.
>
> thanks
>
> jon
> "Miha Pihler [MVP]" <mihap-news@xxxxxxxxxxx> wrote in message
> news:uNQG$6r3FHA.3600@xxxxxxxxxxxxxxxxxxxxxxx
>> Hi Jon,
>>
>> I believe there are two different firewalls in your post. First one is
>> ISA server and it is corporate firewall that can protect your network
>> from untrusted parts like Internet. This one can't be installed in
>> "firewall mode" if you have only one NIC in your server, but it can still
>> be used as e.g. proxy...
>>
>> Second firewall mentioned on your post (Windows Firewall) can also be
>> called personal firewall on your clients. One has nothing to do with the
>> other.
>>
>> My guess is that your clients get group policy settings that prevent them
>> from changing personal (Windows Firewall) settings. Can you run
>>
>> rsop.msc
>>
>> from Star -> Run menu on the client PC where you would like to change the
>> firewall settings? Once the RSoP finishes checking the policy can you
>> drill down to
>> Computer Configuration\Administrative Templates\Network\Network
>> Connections\Windows Firewall\Domain Profile or Standard Profile
>>
>> Check the policy settings that member of domain receives...
>>
>> --
>> Mike
>> Microsoft MVP - Windows Security
>> "Jon Straub" <jon@xxxxxxxxxxxxx> wrote in message
>> news:OhLSwRp3FHA.3844@xxxxxxxxxxxxxxxxxxxxxxx
>>> when installing 2003 small business server, I get a message that says
>>> since
>>> I don't have two nic cards, I can use server based firewall. which is
>>> fine
>>> with me. but once the computers join the domain controlled by the 2003
>>> server, I can not change the firewall setting on the workstations. That
>>> is
>>> I can not turn firewall on or off. these choices are greyed out.
>>>
>>> if the server firewall is not functioning why is it controlling the
>>> firewall
>>> on the workstations.
>>>
>>> jon
>>>
>>>
>>>
>>
>>
>
>
.
- References:
- server firewall
- From: Jon Straub
- Re: server firewall
- From: Miha Pihler [MVP]
- Re: server firewall
- From: Jon Straub
- server firewall
- Prev by Date: Re: server firewall
- Next by Date: Re: Dual-Boot Installation Using 2 Hard Disks
- Previous by thread: Re: server firewall
- Next by thread: VPN Problem joining domain
- Index(es):
Relevant Pages
|
