怎樣通過命令管理Windows7案頭防火牆
來源:互聯網
上載者:User
(1)啟用案頭防火牆netsh advfirewall set allprofiles state on(2)設定預設輸入和輸出策略netsh advfirewall set allprofiles firewallpolicy allowinbound,allowoutbound以上是設定為允許,如果設定為拒絕使用blockinbound,blockoutbound(3)關閉tcp協議的139連接埠netsh advfirewall firewall add rule name="deny tcp 139" dir=in protocol=tcp localport=139 action=block(4)關閉udp協議的139連接埠netsh advfirewall firewall add rule name="deny udp 139" dir=in protocol=udp localport=139 action=block(5)關閉tcp協議的445連接埠netsh advfirewall firewall add rule name="deny tcp 445" dir=in protocol=tcp localport=445 action=block(6)關閉udp協議的445連接埠netsh advfirewall firewall add rule name="deny udp 445" dir=in protocol=udp localport=445 action=block(7)使用相同的方法,依次關閉TCP協議的21、22、23、137、138、3389、5800、5900連接埠。netsh advfirewall firewall add rule name= "deny tcp 21" dir=in protocol=tcp localport=21 action=blocknetsh advfirewall firewall add rule name= "deny tcp 22" dir=in protocol=tcp localport=22 action=blocknetsh advfirewall firewall add rule name= "deny tcp 23" dir=in protocol=tcp localport=23 action=blocknetsh advfirewall firewall add rule name= "deny tcp 3389" dir=in protocol=tcp localport=3389 action=block 學習電腦netsh advfirewall firewall add rule name= "deny tcp 5800" dir=in protocol=tcp localport=5800 action=blocknetsh advfirewall firewall add rule name= "deny tcp 5900" dir=in protocol=tcp localport=5900 action=blocknetsh advfirewall firewall add rule name= "deny tcp 137" dir=in protocol=tcp localport=137 action=blocknetsh advfirewall firewall add rule name= "deny tcp 138" dir=in protocol=tcp localport=138 action=block(8)執行完畢後暫停pauseecho 按任意鍵退出2.恢複初始配置(1)恢複初始防火牆設定netsh advfirewall reset(2)關閉防火牆netsh advfirewall set allprofiles state off