How To Configure Firewall for Windows Server 2008 R2

Posted on December 29th, 2013

Posted By | Comments

Windows Firewall with Advanced Security is an advanced interface for IT professionals to use to Configure-Firewall-On-Windows-Server

configure both Windows Firewall and Internet Protocol security (IPsec) settings for the computers on their networks.

Note : On windows vps there will be microsoft firewall.


Aim of the Article 

To provide a high security level firewall which can give security against basic network attacks.


Default Firewall Configuration

Windows Server 2008/R2 domain controllers come with pre-configured firewall rules. Not only are there inbound rules, but there are outbound rules as well. This is a major step in the right direction with regard to protecting the computer by using the local firewall.

If we take a look at the firewall rules for a standard domain controller, we will see that there are firewall rules as follows:

  • Active Directory domain controller
  • Core Networking
  • DNS
  • File and Printer Sharing
  • File Replication
  • Kerberos Key Distribution Center
  • Remote Desktop
  • Windows Management Instrumentation

Configuring Windows Firewall with Advanced Security

STEP 1 :-

There are two options for configuring the Windows Firewall settings. Both have advantages, but as an auditor, you will appreciate one over the other. The first is to use the local computer configuration option, which means that each computer will need to be configured individually. The second is to use Group Policy, which allows for a single instance of configuration, which will then target many computers.

STEP 2 :-

To use the local configuration option, you will use the Server Manager interface that we discussed earlier on in this article. From the Windows Firewall with Advanced Security node within Server Manager, you can just right-click on the Inbound, Outbound, or Connection Security node and create a new rule. You will need to know what you want to control, as the wizard will not automatically generate rules. So, for example, you will need to know one or more of the following to create your rules: the program, port, allow or deny action, encryption requirements, and scope of the connection.

STEP 3:-

The other option, to use Group Policy, has a very similar wizard to that of the local option. The big difference is that Group Policy can have a single instance for the configuration, but that single instance can affect many computers. To access the Windows Firewall configuration within a Group Policy, you will need to first access the Group Policy Management Console (GPMC), which is one of the Administrative Tools. Once in the GPMC, you can use an existing Group Policy Object, or create a new one. I suggest you create a new GPO by right-clicking on the Group Policy Objects node and selecting New.

STEP 4:-

After creating your new GPO, you will edit it by right-clicking on it and selecting Edit. This will open up the GPO in the Group Policy Management Editor. From here, you will expand the following nodes to get to the Windows Firewall configuration: Computer Configuration\Policies\Windows Settings\Security Settings\Windows Firewall with Advanced Security.


The Windows Firewall has been an under-utilized tool for many years. The interface has been unfriendly, the configurations confusing, and the overall capabilities less than impressive. Now, with the new integration of IP Security and the Windows Firewall, the capabilities and overall usefulness of the firewall in Windows Server 2008/R2 is not only a benefit, but a default, enabled service. The firewall for your Windows Server 2008/R2 domain controllers come with pre-defined rules, which control both inbound and outbound traffic. In the end, your Windows Server 2008/R2 domain controllers will be more secure from outbound attacks than with any other domain controller before.

If you have any query so please contact our support department and please do not forget to share or like the article.

About -