Firewall and Group Policy

G

Guest

Hello:
I currently have disabled MS firewall on LAN connections and enabled on
Wireless and Dialup not allowing file and print sharing or remote
desktop/assistance. For my users it is more important to keep them secure
when not on our LAN which has a nice hardware firewall to protect them.

I have been toying with the idea of enabling the firewall on XP machines and
maybe 2003 servers through Group Policy allowing the exceptions necessary for
me to remotely administer the services, update virus software, install
patches, etc. My concern is Windows firewall does not allow exception for
each individual connection, seems it is a one for all configuration.

If you have Group Policy firewall connections will they also be applied when
the user is not physically connected to the domain? Even if they sign onto
domain using cached credentials?
 
M

Mitch Tulloch

If you have Group Policy firewall connections will they also be applied
when
the user is not physically connected to the domain? Even if they sign
onto
domain using cached credentials?


Yep! Whatever Group Policy settings have been applied to the machine while
it was connected to the domain will be enforced when the machine logs on
using cached credentials.

--
Cheers,
Mitch Tulloch, MVP Windows Server
=======================================
website: http://www.mtit.com
my blog: http://itreader.net

This message is provided "as is" with no warranties, and confers no
rights
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top