Ping a Specific Port

Question

Alex

Asked: 2011-10-25 12:09:05 +0800 CST2011-10-25 12:09:05 +0800 CST 2011-10-25 12:09:05 +0800 CST

Windows 2008 firewall config

772

Is there any way to add a firewall rule that essentially says, "deny if remoteip= and localport DOES NOT EQUAL ?

I have a network interface connected to a shared network and on that network I only want one TCP port available. But the server is connected to multiple private networks so the private network firewall profile is insufficient here.

1 Answers

Voted

LukeP · Answer 1 · 2011-10-26T01:21:35+08:00

LukeP

2011-10-26T01:21:35+08:002011-10-26T01:21:35+08:00

I think it will be much easier to create a rule if you follow these rules:

Deny everything from everywhere on every port.
Open only what you want: netsh advfirewall firewall add rule name=”Rule” dir=in action=allow enable=yes remoteip=172.16.1.1 profile=private protocol=TCP localport=80

I think you're making it more difficult than it actually is. You should always follow this pattern. Specific DENY rules go out of control very quickly. It's much easier to deny everything and maintain ALLOW rules only.

0

Windows 2008 firewall config

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?