local firewall on DCs. thoughts?

  • Last Post 31 January 2019
Mat.Collins posted this 29 January 2019


how you guys have managed to configure window firewall in your DCs? i mean not the configuration, but i mean in how many phases you configured it. for example first you query all the ports it uses by using 'Get-NetTCPConnection' and list all the ports and then you allow the ones that are listetning or established? what abuot the ports that you have not found out yet? i mean in an environment where there are so many apps and programs, how do you proceed in configuring firewalls where there could be many hidden ports which are used by apps? 

any thoughts?

Order By: Standard | Newest | Votes
daemonr00t posted this 29 January 2019

Windows built-in firewall comes with a pre canned set of rules that can be managed based on the given roles on the system.

Still one can create custom rules as need it.

This of course can be managed via GPO for a steady configuration across the environment.



Ravi.Sabharanjak posted this 31 January 2019

another point to look at is the installed software on your DC, to see what other additional firewall rules you may need.