Windows Firewall Commands CMD #2

-

 Windows Firewall can be managed using the Command Prompt with the netsh utility. Here is a comprehensive list of commands to configure and manage Windows Firewall:

Basic Commands

1.View the status of Windows Firewall:

netsh advfirewall show allprofiles


2.Enable Windows Firewall:
netsh advfirewall set allprofiles state on

3.Disable Windows Firewall:

netsh advfirewall set allprofiles state off


Profile-Specific Commands

1.Enable Firewall for a specific profile (domain/private/public):
netsh advfirewall set domainprofile state on
netsh advfirewall set privateprofile state on
netsh advfirewall set publicprofile state on

2.Disable Firewall for a specific profile (domain/private/public):
netsh advfirewall set domainprofile state off
netsh advfirewall set privateprofile state off
netsh advfirewall set publicprofile state off

Configuring Inbound and Outbound Rules

1.Add a new inbound rule:
netsh advfirewall firewall add rule name="RuleName" dir=in action=allow protocol=TCP localport=PortNumber

2.Add a new outbound rule:
netsh advfirewall firewall add rule name="RuleName" dir=out action=allow protocol=TCP remoteport=PortNumber

3.Delete an existing rule:

netsh advfirewall firewall delete rule name="RuleName"


Enabling/Disabling Rules

1.Enable a Rule

netsh advfirewall firewall set rule name="RuleName" new enable=yes


2.Disable a rule:
netsh advfirewall firewall set rule name="RuleName" new enable=no

Configuring Notifications and Logging

1.Enable notifications for blocked connections:
netsh advfirewall set allprofiles settings inboundusernotification enable

2.Disable notifications for blocked connections:

netsh advfirewall set allprofiles settings inboundusernotification disable


3.Enable logging:
netsh advfirewall set allprofiles logging filename "C:\Path\To\Log\pfirewall.log" maxfilesize=4096

4.Disable logging:
netsh advfirewall set allprofiles logging disabled

Resetting Firewall Settings

1.Reset all firewall settings to default:
netsh advfirewall reset

Configuring Specific Programs

1.Allow a program through the firewall:
netsh advfirewall firewall add rule name="AllowProgram" dir=in action=allow program="C:\Path\To\Program.exe"

2.Block a program through the firewall:
netsh advfirewall firewall add rule name="BlockProgram" dir=in action=block program="C:\Path\To\Program.exe"

Configuring Ports

1.Allow a specific port:
netsh advfirewall firewall add rule name="AllowPort" dir=in action=allow protocol=TCP localport=PortNumber

2.Block a specific port:

netsh advfirewall firewall add rule name="BlockPort" dir=in action=block protocol=TCP localport=PortNumber

Additional Commands

  1. View all firewall rules:

netsh advfirewall firewall show rule name=all

2.Export firewall configuration to a file:

netsh advfirewall export "C:\Path\To\File\firewall-config.wfw"

3.Import firewall configuration from a file:
netsh advfirewall import "C:\Path\To\File\firewall-config.wfw"

Comments

Post a Comment

Popular posts from this blog

SAMBA SERVER 2.0 #server

-
 To share a folder on a LAN using Samba on a Linux system, follow these steps: 1. **Install Samba**: If it's not already installed, you need to install Samba. Open a terminal and run:    ```bash    sudo apt update    sudo apt install samba    ``` 2. **Create a Directory to Share**: Create the directory you want to share, if it doesn't exist. For example:    ```bash    sudo mkdir -p /srv/samba/share    sudo chmod 2775 /srv/samba/share    sudo chown nobody:nogroup /srv/samba/share    ``` 3. **Configure Samba**: Edit the Samba configuration file to add your share.    Open the Samba configuration file in a text editor:    ```bash    sudo nano /etc/samba/smb.conf    ```    Add the following configuration at the end of the file:    ```ini    [share]    path = /srv/samba/share    browseable = yes    read only = no    guest ok = yes    create mask = 0660    directory mask = 2770    force user = nobody    force group = nogroup    ```    This configuration sets up a share called "sh
Read more

Setup SSH for accessing outside from network

-
To set up port forwarding for SSH from a router to allow external access to a Kali Linux machine, you need to configure your router and ensure your Kali Linux SSH server is correctly set up. Here's a step-by-step guide on how to do this: ### Step 1: Configure SSH on Kali Linux 1. **Install OpenSSH Server** (if not already installed):    ```bash    sudo apt update    sudo apt install openssh-server    ``` 2. **Start and Enable SSH Service**:    ```bash    sudo systemctl start ssh    sudo systemctl enable ssh    ``` 3. **Check SSH Status**:    ```bash    sudo systemctl status ssh    ``` 4. **Optional: Change Default SSH Port** (for security):    Edit the SSH configuration file:    ```bash    sudo nano /etc/ssh/sshd_config    ```    Change the line:    ```    #Port 22    ```    to something like:    ```    Port 8022    ```    Save the file and restart the SSH service:    ```bash    sudo systemctl restart ssh    ``` ### Step 2: Configure Port Forwarding on the Router Since router inter
Read more

Speech tools - espeak and festival etc.

-
 Using speech tools in Kali Linux involves installing and utilizing various software packages designed for speech processing, synthesis, and recognition. Here are the steps to get you started: 1. Install Required Packages Kali Linux is based on Debian, so you can use apt to install the necessary packages. Some popular speech tools include espeak , festival , and pocketsphinx . Install espeak espeak is a compact open-source software speech synthesizer for English and other languages. sudo apt update sudo apt install espeak You can test espeak by running: espeak "Hello, this is a test of the espeak system." Install festival festival is a general-purpose, multi-lingual speech synthesis system. sudo apt install festival You can test festival by running: echo "Hello, this is a test of the festival system." | festival --tts Install pocketsphinx pocketsphinx is a lightweight speech recognition engine from CMU Sphinx. sudo apt install pocketsphinx pocketsphinx-en-us Yo
Read more