软件型防火墙-windows defender
1 概述
- windows defender防火墙是微软出的一款专门针对操作系统的防火墙,区别与windows安全中心(杀毒软件)
2 windows defender界面
控制面板-系统与安全-windows defender 防火墙
3 允许443和80端口的流量通过
4 命令操作防火墙
C:\Users\Administrator>netsh advfirewall firewall add rule /?
用法: add rule name=<string> 规则名字
dir=in|out in入站|out出站
action=allow|block|bypass allow允许|block拒绝
[program=<program path>]
[service=<service short name>|any]
[description=<string>]
[enable=yes|no (default=yes)] yes启用|no禁用
[profile=public|private|domain|any[,...]]
[localip=any|<IPv4 address>|<IPv6 address>|<subnet>|<range>|<list>] 本地IP地址
[remoteip=any|localsubnet|dns|dhcp|wins|defaultgateway| 远端IP地址
<IPv4 address>|<IPv6 address>|<subnet>|<range>|<list>]
[localport=0-65535|<port range>[,...]|RPC|RPC-EPMap|IPHTTPS|any (default=any)] 本地端口
[remoteport=0-65535|<port range>[,...]|any (default=any)] 远端端口
[protocol=0-255|icmpv4|icmpv6|icmpv4:type,code|icmpv6:type,code| 协议
tcp|udp|any (default=any)]
[interfacetype=wireless|lan|ras|any]
[rmtcomputergrp=<SDDL string>]
[rmtusrgrp=<SDDL string>]
[edge=yes|deferapp|deferuser|no (default=no)]
[security=authenticate|authenc|authdynenc|authnoencap|notrequired
(default=notrequired)]
netsh advfirewall firewall add rule name=icmp dir=in action=allow remoteip=192.168.159.1 protocol=icmpv4