Is it possible to configure Windows Firewall to trust all traffic from a given IP address? "DLN" <dnadon_nospm[ at ]hotmail.com> 18.06.2007 19:08:04 Hello all, I've been looking through netsh related documentation in regards to the Windows Firewall. I'm hoping that I've overlooked something obvious, but it seems that I have to always specify a port number in the rule when it is created. Is it possible to create a rule that instructs Windows Firewall to accept all traffic from a specific IP address (regardless of port) or do I need to create 65535 rules to accomplish this? Writing a netsh script to accomplish this isn't a problem, but what sort of impact will that number of rules have on the overall performance of the server? Alternatively, is there some way to specify a port range for a given host? Thanks in advance, DLN

Re: Is it possible to configure Windows Firewall to trust all traffic from a given IP address? "Sarah Wahlert [MSFT]" <sarah.wahlert[ at ]microsoft.com> 19.06.2007 02:10:11 What version of Windows are you using? For Windows Vista, you can use netsh advfirewall or the Windows Firewall with Advanced Security snap-in to create a rule to accept all traffic from an IP address. If you are using Windows XP SP2, you can't create such a rule. "DLN" <dnadon_nospm[ at ]hotmail.com> wrote in message news:e5XALwdsHHA.484[ at ]TK2MSFTNGP06.phx.gbl... [Quoted Text] > Hello all, > > I've been looking through netsh related documentation in regards to the > Windows Firewall. I'm hoping that I've overlooked something obvious, but > it seems that I have to always specify a port number in the rule when it > is created. Is it possible to create a rule that instructs Windows > Firewall to accept all traffic from a specific IP address (regardless of > port) or do I need to create 65535 rules to accomplish this? Writing a > netsh script to accomplish this isn't a problem, but what sort of impact > will that number of rules have on the overall performance of the server? > Alternatively, is there some way to specify a port range for a given host? > > Thanks in advance, > > DLN >

Re: Is it possible to configure Windows Firewall to trust all traffic from a given IP address? "DLN" <dnadon_nospm[ at ]hotmail.com> 19.06.2007 14:33:32 Sarah, Thanks for the response. I'm using Windows XP/2003 so I guess I'm stuck with generating several rules, and that's not so much a problem, I was just wondering if I needed to write a script. Thanks again for the information, DLN "Sarah Wahlert [MSFT]" <sarah.wahlert[ at ]microsoft.com> wrote in message news:e4Sk4bhsHHA.4324[ at ]TK2MSFTNGP03.phx.gbl... [Quoted Text] > What version of Windows are you using? For Windows Vista, you can use > netsh advfirewall or the Windows Firewall with Advanced Security snap-in > to create a rule to accept all traffic from an IP address. If you are > using Windows XP SP2, you can't create such a rule. > > "DLN" <dnadon_nospm[ at ]hotmail.com> wrote in message > news:e5XALwdsHHA.484[ at ]TK2MSFTNGP06.phx.gbl... >> Hello all, >> >> I've been looking through netsh related documentation in regards to the >> Windows Firewall. I'm hoping that I've overlooked something obvious, but >> it seems that I have to always specify a port number in the rule when it >> is created. Is it possible to create a rule that instructs Windows >> Firewall to accept all traffic from a specific IP address (regardless of >> port) or do I need to create 65535 rules to accomplish this? Writing a >> netsh script to accomplish this isn't a problem, but what sort of impact >> will that number of rules have on the overall performance of the server? >> Alternatively, is there some way to specify a port range for a given >> host? >> >> Thanks in advance, >> >> DLN >> >