Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
Maxwell1342018-09-03 18:52:45
Windows Server
Maxwell134, 2018-09-03 18:52:45

How do I set up a secure WinRM connection?

Good afternoon!
Faced a problem of the following character.
You need to configure everything in the WinRM domain, everything seems to work well, the policy can be connected to computers via PSSesion.
However, if I try to put a restriction on the policy, that is, allow Windows Remote Management only to a specific IP address or host. Everything no longer works at all.
I tried to make a rule in the Ogene Wall by opening a connection from a specific IP address. However, the fire eraser does not let you in. Writes the following in the logs

2018-09-03 18:31:36 DROP UDP fe80::9423:bf4f:a61f:e3c1 ff02::fb 5353 5353 84 - - - - - - - RECEIVE
2018-09-03 18:31:37 DROP UDP fe80::9423:bf4f:a61f:e3c1 ff02::fb 5353 5353 185 - - - - - - - RECEIVE
2018-09-03 18:31:38 DROP UDP fe80::9423:bf4f:a61f:e3c1 ff02::fb 5353 5353 84 - - - - - - - RECEIVE
2018-09-03 18:31:40 DROP UDP fe80::9423:bf4f:a61f:e3c1 ff02::fb 5353 5353 185 - - - - - - - RECEIVE
2018-09-03 18:31:42 DROP UDP fe80::9423:bf4f:a61f:e3c1 ff02::fb 5353 5353 84 - - - - - - - RECEIVE
2018-09-03 18:31:50 DROP UDP fe80::9423:bf4f:a61f:e3c1 ff02::fb 5353 5353 84 - - - - - - - RECEIVE
2018-09-03 18:36:07 DROP TCP 192.168.4.137 192.168.4.129 63276 5985 52 S 231533463 0 8192 - - - RECEIVE
2018-09-03 18:36:10 DROP TCP 192.168.4.137 192.168.4.129 63276 5985 52 S 231533463 0 8192 - - - RECEIVE
2018-09-03 18:36:17 DROP TCP 192.168.4.137 192.168.4.129 63276 5985 48 S 231533463 0 8192 - - - RECEIVE
2018-09-03 18:37:27 DROP TCP 192.168.4.137 192.168.4.129 63563 5985 52 S 2226797805 0 8192 - - - RECEIVE
2018-09-03 18:37:30 DROP TCP 192.168.4.137 192.168.4.129 63563 5985 52 S 2226797805 0 8192 - - - RECEIVE
2018-09-03 18:37:36 DROP TCP 192.168.4.137 192.168.4.129 63563 5985 48 S 2226797805 0 8192 - - - RECEIVE

Tell me who has come across winRM how to set up a secure connection.
Thank you

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
T
TapakaLLIko, 2018-09-04
@TapakaLLIko

Try using the hostname instead of the machine's ip address

Report
V
Vadim Choporov, 2018-09-04
@tolstyiii

Well, the fact that you have packages dropping on the "wall of fire" - at the setting of the "wall" itself)) and according to winRM - what do you mean by the word "safe"? At the application level, this is, for example, HTTP / HTTPS. You, as far as I understand, want to limit the connection by resource. Tools must be used for their intended purpose. If you need to restrict access to somewhere from any sources, just the "fiery wall" exists, and take care of its settings. And in the policies there are Trusted Hosts - but this restriction is not in terms of resources, but in terms of goals. Created for admins so that you can safely protect important resources.

Similar questions
D
Dmitry Anisimov2019-01-23 21:36:25
I can not understand why the picture is not connected? 3Reply
Z
Zohei2018-10-31 23:04:59
How to give programs elevated privileges to access usb and hdd under local user? 3Reply
N
nibbl2018-11-01 17:05:27
Why are the rights not applied? 2Reply
N
Nikolay Shamanovich2014-04-17 16:00:38
Why is the role missing in windows server 2008? 1Reply
K
Kirill Ponomarev2016-06-06 16:05:27
Why is wsus not working? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question