I'm running Symantec Endpoint Protection 11 and I'm hoping to be able to toggle a simple firewall rule with a script. If I can do it from the command line that would be preferred.
SnapOverflow
I'm running Symantec Endpoint Protection 11 and I'm hoping to be able to toggle a simple firewall rule with a script. If I can do it from the command line that would be preferred.
It's unclear to me what Symantec Endpoint Protection has to do w/ your question, so please let me know if I'm missing something.
In terms of manipulating the Windows 7 Advanced Firewall from the command line I believe the
netsh advfirewallcommand is what you're looking for. Read up on the syntax at Microsoft's site and play around with it a bit and I think you'll find it fairly intuitive.If you're looking at making changes to firewall rules on clients in an Active Directory domain environment you'd have a better time of it using Group Policy instead of a command-line script.
Scripting SEP is painful and full of things that can go wrong that can cause you to have to rebuild the system. I haven't tried to script it since the windows firewall in vista+ became so much better (making no reason to use the SEP firewall especially since it doesn't start with the network). You have to use the SMC command to do anything command line. Docs for it live here. There is a vbscript sample to automate it here