Monday, July 27, 2015

Windows 2008 Firewall - How do I restrict HTTP inbound to specific IP?

My goal is to restrict all HTTP inbound requests to a specific IP addresses. I thought it would be a simple process - but I am not getting the result desired



I have modified a predefined rule called WWW (HTTP Traffic-In) - so that it "Block" incoming connection (and made sure the this inbound rule's Scope applies to the currently active Profile)



I did not at this stage - specify allowable IPs - as I want to see if the rule would block ALL http traffic inbound.



In the Private Profile (which is the active profile) - i have these settings:
- Firewall state: On
- Inbound connections: Allow
- Outbound connections: Block




Windows Firewall Overview Page shows:
- Private Profile is Active
- Inbound connections that do not match a rule are allowed
- Outbound connections that do not match a rule are blocked



However, the firewall rule still allowed HTTP traffic inward and my Windows 2008 server still responded with a test page



I know it should be a simple task setting up a firewall rule - but perhaps I missing something ??

-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...