A
A
Aquahawk2011-07-12 18:24:32
firewall
Aquahawk, 2011-07-12 18:24:32

Windows 7 firewall, find out which rule is blocking the connection

There is a problem with udp connections on the local network.
Windows 7 pro x64 Russian, if it matters.
Windows Firewall is enabled and configured for two networks, local and external, and blocks the connection only from the local network, if you connect outside via the Internet, then everything works.
I turned on logging, made sure that it was blocking. If you disable it, everything works as it should. But you need to figure out why he does it.

block logging is enabled, outputs this:
#Fields: date time action protocol src-ip dst-ip src-port dst-port size tcpflags tcpsyn tcpack tcpwin icmptype icmpcode info path
2011-07-12 16:48:36 DROP UDP 192.168.5.151 192.168.5.101 52467 65426 96 - - - - - - - RECEIVE


also if we execute netsh advfirewall show currentprofile
we will see
Параметры Частный профиль
----------------------------------------------------------------------
Состояние ВКЛЮЧИТЬ
Политика брандмауэра BlockInbound,AllowOutbound
LocalFirewallRules Н/Д (только хранилище GPO)
LocalConSecRules Н/Д (только хранилище GPO)
InboundUserNotification Включить
RemoteManagement Отключить
UnicastResponseToMulticast Включить

Ведение журнала:
LogAllowedConnections Отключить
LogDroppedConnections Включить
FileName %systemroot%\system32\LogFiles\Firewall\pfirewall.log
MaxFileSize 4096

Параметры Общий профиль
----------------------------------------------------------------------
Состояние ВКЛЮЧИТЬ
Политика брандмауэра BlockInbound,AllowOutbound
LocalFirewallRules Н/Д (только хранилище GPO)
LocalConSecRules Н/Д (только хранилище GPO)
InboundUserNotification Включить
RemoteManagement Отключить
UnicastResponseToMulticast Включить

Ведение журнала:
LogAllowedConnections Отключить
LogDroppedConnections Отключить
FileName %systemroot%\system32\LogFiles\Firewall\pfirewall.log
MaxFileSize 4096

ОК.

Answer the question

In order to leave comments, you need to log in

2 answer(s)
P
Puma Thailand, 2011-07-12
@opium

Isn't it easier to look at the rules of the firewall in the GUIs?
Did you set it up via console?

A
amario, 2011-07-12
@amario

Maybe there is no explicit rule for your “drop” and it implicitly fights back?
I mean, write down the allowing rule in the 2nd direction for your connection.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question