Windows Firewall

scotth

My apologies for not stating this clearly.

Comcast router -->> Watchguard Firewall -->> Cybera Router -->>PaySafe Firewall (EchoSAT).

I had to get permission to connect our backoffice which is offsite by statically addressing one of the Watchguard ports and then routing into the Cybera -- all done over VPN. While it works fine, it's just a little wonky to try to explain to the powers that be why we are doing it this way. Otherwise, I'l have to add an onsite Windows host. Just more layers.

Edit: I connected the specified Watchguard port to the POS (Cybera) router.

WrCombs

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

DustinB3403

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

WrCombs

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

My weekend plans basically. or maybe monday morning.. lets see what happens.

Obsolesce

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just visit the vendor website and see what ports it uses... You can get the info from resource monitor too. That's how I usually find out... It's quicker.

scottalanmiller

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just look at netstat and know instantly.

WrCombs

@scottalanmiller said in Windows Firewall:

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just look at netstat and know instantly.

Ran netstat in CMD as admin.
Do I use the Foreign address or the IP address?

black3dynamite

@wrcombs said in Windows Firewall:

@scottalanmiller said in Windows Firewall:

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just look at netstat and know instantly.

Ran netstat in CMD as admin.
Do I use the Foreign address or the IP address?

Foreign is the device you are connected to. IP address is the local address.

scottalanmiller

@wrcombs said in Windows Firewall:

@scottalanmiller said in Windows Firewall:

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just look at netstat and know instantly.

Ran netstat in CMD as admin.
Do I use the Foreign address or the IP address?

Do netstat -a -b

You only care about listening ports.

WrCombs

@scottalanmiller said in Windows Firewall:

@wrcombs said in Windows Firewall:

@scottalanmiller said in Windows Firewall:

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just look at netstat and know instantly.

Ran netstat in CMD as admin.
Do I use the Foreign address or the IP address?

Do netstat -a -b

You only care about listening ports.

Okay Thanks.

scottalanmiller

@wrcombs said in Windows Firewall:

@scottalanmiller said in Windows Firewall:

@wrcombs said in Windows Firewall:

@scottalanmiller said in Windows Firewall:

@dustinb3403 said in Windows Firewall:

@wrcombs said in Windows Firewall:

The topic of Windows Firewall came up again today when a site had turned it on
When I asked "Shouldnt there be a way to write rules in the windows firewall so that we could just keep it on?"
He replied: "look into that, and see what you can find. It would have been better for the vendor to add that to their image they give us to boot the POS but if you can find a way to do it we can try it that way."

That's a win in my book, now setup wireshark and see what the hell is being used!

Or just look at netstat and know instantly.

Ran netstat in CMD as admin.
Do I use the Foreign address or the IP address?

Do netstat -a -b

You only care about listening ports.

Okay Thanks.

You bet.