OT: Firewall ve windows serveru 200x
Míra Beneš
benes.m na stapro.cz
Pátek Říjen 14 12:46:13 CEST 2011
urcite nejsem odbornik ale pridam priklad jak pravidla nastavovat
hromadne v davce
@echo ========= SQL Server Ports ===================
@echo Enabling SQLServer default instance port 1433
netsh firewall set portopening TCP 1433 "SQLServer"
@echo Enabling Dedicated Admin Connection port 1434
netsh firewall set portopening TCP 1434 "SQL Admin Connection"
@echo Enabling conventional SQL Server Service Broker port 4022
netsh firewall set portopening TCP 4022 "SQL Service Broker"
@echo Enabling Transact-SQL Debugger/RPC port 135
netsh firewall set portopening TCP 135 "SQL Debugger/RPC"
@echo ========= Analysis Services Ports ==============
@echo Enabling SSAS Default Instance port 2383
netsh firewall set portopening TCP 2383 "Analysis Services"
@echo Enabling SQL Server Browser Service port 2382
netsh firewall set portopening TCP 2382 "SQL Browser"
@echo ========= Misc Applications ==============
@echo Enabling HTTP port 80
netsh firewall set portopening TCP 80 "HTTP"
@echo Enabling SSL port 443
netsh firewall set portopening TCP 443 "SSL"
@echo Enabling port for SQL Server Browser Service's 'Browse' Button
netsh firewall set portopening UDP 1434 "SQL Browser"
@echo Allowing multicast broadcast response on UDP (Browser Service
Enumerations OK)
netsh firewall set multicastbroadcastresponse ENABLE
mira
On 14.10.2011 12:26, Petr Simek wrote:
>
> Dobry den
>
> chtel bych se zeptat mistnich odborniku na win - lze tam nastavit firewall
> nejak "lidsky" ? Nejakou utilitou nebo tak. Tim "lidsky" myslim obecnou
> klasiku kde je pod sebou sada pravidel se specifikaci SRC_IP_port na
> DEST_IP_port , eventuelne stavovy.
>
> Ja jsem se na to dival a vubec jsem nepochopil tu filozofii. Jsou tam
> nejake zony ala domain, trusted, public a v nich se zapisuji jakasi
> pravidla obskurne pojmenovana podle programu takze clovek vi houby co
> tam vlastne nastavil.
>
> Neni na to nejaky figl jak vylistovat a nastavit ten firewall obvyklym
> zpusobem ?
>
>
> S pozdravem
>
> *------------------------------------------------------------------------*
> | Petr Simek APS JU |
> | psimek na jcu.cz |
> *------------------------------------------------------------------------*
> _______________________________________________
> HW-list mailing list - sponsored by www.HW.cz
> Hw-list na list.hw.cz
> http://list.hw.cz/mailman/listinfo/hw-list
>
Další informace o konferenci Hw-list