Turn on Windows Firewall and Configure Default Behavior

Applies To: Windows Server 2012

To enable Windows Firewall and configure its default behavior, use the Windows Firewall with Advanced Security node (for Windows 8, Windows 7, Windows Vista, Windows Server 2012, Windows Server 2008, and Windows Server 2008 R2) in the Group Policy Management MMC snap-in.

Administrative credentials

To complete these procedures, you must be a member of the Domain Administrators group, or otherwise be delegated permissions to modify the GPOs.

To enable Windows Firewall and configure the default behavior on Windows 8, Windows 7, Windows Vista, Windows Server 2012, Windows Server 2008, or Windows Server 2008 R2

1. Open the Group Policy Management Console to Windows Firewall with Advanced Security.

2. In the details pane, in the Overview section, click Windows Firewall Properties.

3. For each network location type (Domain, Private, Public), perform the following steps.

   Note

   The steps shown here indicate the recommended values for a typical deployment. Use the settings that are appropriate for your firewall design.

   1. Click the tab that corresponds to the network location type.

   2. Change Firewall state to On (recommended).

   3. Change Inbound connections to Block (default).

   4. Change Outbound connections to Allow (default).