A Windows Server 2008-based DC has a significant improvement in both functionality and security. At the same time, we also know that the firewall of Windows Server 2008 is also very powerful. There is no doubt that deploying a firewall policy on a Windows Server 2008 DC will undoubtedly greatly improve the security of the entire domain. The author builds the environment below, and combines an example to demonstrate a firewall policy deployment.
1. Deploy firewall policy on DC
(1). Configure firewall policy
Click “Start” to enter “gpmc.msc” in the search bar to open GPMC. Group Policy Management Tool. Expand DC Domain to expand to the Default Domain Policy location of this domain, double-click the item and then click Action > Edit to enter the domain policy edit window. Click "Computer Configuration" → "Windows Settings" → "Security Settings" → "Windows Firewall with Advanced Security", double-click to open "Windows Firewall Properties" to see a preview of the firewall policy on the right side, from which you can understand the "Domain Profile" , "Private Profile", "Public Profile" configuration status. (Figure 1)
Click "Windows Firewall Properties" to open the firewall properties window. By default, the firewall is not configured. All the items need to be set as needed. Since we are configuring the domain firewall, we are located under the "Domain Profile" tab. For example, we need to configure the firewall so that it blocks all inbound connections to prevent network attacks, and allows all external connections. You can configure this by enabling the firewall to set its state "Firewall State" to "On (recommended)" and set " Inbound connections is "Block (default)", and "Outbound connections" is set to "Allow (default)". (Figure 2)
Click on "Customize" on the right side of "Customize Settings for the Domain Profile" to customize the firewall policy. In the settings dialog, we set the "Apply local firewall rules" and "Apply local connections security rules" to "No" to prevent the consolidation of local firewall rules to implement a unified domain firewall policy, and finally click "OK" to exit. Custom settings. (Figure 3)
Previous 12 3 Next Read more
[Q] I installed Win2008 system without sound?[Answer] The full name of Win2008 is Windows Server2008
System maintenance, management, often in the command prompt (cmd.exe) operation, there is little con
Changed to the 2008 system, the website background shows 500 internal errors, open the website http
A new server management console is available to simplify the task of installing, managing, and secur
Windows server 2008 IE enhanced security configuration shutdown method
Self-service security defense under Windows Server 2008
Everything for efficiency Windows Server 2008 operation new recruit
Windows Server 2008 to build a terminal server
Understand the common skills of windows2008
The difference between the four modes of cluster shared volume file (CSV)
Windows Server 2008 Network Neighborhood Open Slow Solution
Transparent Windows 2008 system status changes
Microsoft's new Windows Server 2008 Foundation details
Convenient operation and remote management of Windows Server core
A practical way to solve the write protection of Windows 7 system
Meitu Xiu Xiu how to make a cartoon ID card tutorial
How to configure the desktop environment in Windows XP
Vista automatically clears virtual memory page
Win7 two computers share the Internet
Microsoft "locked" Win9 preview version Mini start menu function
Protect personal privacy and clean up resource search records in a timely manner.