Question : How to block mulitple ports within a range in mmc?

Hi,

I'm using IP Security Policies for the Local Computer via mmc to block ports for my computer. Right now i managed to block a single port using the IP Filter list, but i would like to block the entire range of ports for example:

2000 - 10000

How can I do that using IP Security Policies and not using Windows Firewall?

Thank you,

Answer : How to block mulitple ports within a range in mmc?

Hi, the only way you would get around it would be to set a range rather than a wildcard with *'s. You won't be able to set a range in IPSEC in group policy, the only way you can get around it would be to us NETSH and add it into a local startup script. It would need to look something like this,

netsh ipsec static add filter filterlist="RDP in" srcaddr=Any dstaddr=69.92.34.81 description="RDP 3389" protocol=TCP mirrored=yes srcmask=0.0.0.0 dstmask=255.255.255.248 srcport=0 dstport=3389

Take a look at a netsh command guide here which should help you along the way - http://www.colorconsole.de/cmd/en/Windows_7/netsh/ipsec/dynamic/show/rule.htm

[email protected]


Random Solutions  
 
programming4us programming4us