Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Powershell Open Port Profile, All (private public domain)

Tags:

powershell

I've a powershell script that opens port 5555, but it defaults to profile = private, when I want it to be all (private, public, domain). How can I modify the script to achieve this?

$port = New-Object -ComObject HNetCfg.FWOpenPort
$port.Port = 5555
$port.Name = 'MyPort'
$port.Enabled = $true

$fwMgr = New-Object -ComObject HNetCfg.FwMgr
$profile = $fwMgr.LocalPolicy.CurrentProfile
$profile.GloballyOpenPorts.Add($port)

$port = New-Object -ComObject HNetCfg.FWOpenPort
$port.Port = 6521
$port.Name = 'ArkleSQL'
$port.Enabled = $true

$fwMgr = New-Object -ComObject HNetCfg.FwMgr
$profile = $fwMgr.LocalPolicy.CurrentProfile
$profile.GloballyOpenPorts.Add($port)
like image 713
DermFrench Avatar asked Oct 01 '12 12:10

DermFrench

2 Answers

You can use FwPolicy2 and FWRule to create a rule for all profiles:

$fwPolicy = New-Object -ComObject HNetCfg.FwPolicy2

$rule = New-Object -ComObject HNetCfg.FWRule
$rule.Name = 'MyPort'
$rule.Profiles = $NET_FW_PROFILE2_ALL
$rule.Enabled = $true
$rule.Action = $NET_FW_ACTION_ALLOW
$rule.Direction = $NET_FW_RULE_DIR_IN
$rule.Protocol = $NET_FW_IP_PROTOCOL_TCP
$rule.LocalPorts = 5555

$fwPolicy.Rules.Add($rule)

Here are the used constants:

$NET_FW_PROFILE2_DOMAIN = 1
$NET_FW_PROFILE2_PRIVATE = 2
$NET_FW_PROFILE2_PUBLIC = 4
$NET_FW_PROFILE2_ALL = 2147483647

$NET_FW_IP_PROTOCOL_TCP = 6
$NET_FW_IP_PROTOCOL_UDP = 17
$NET_FW_IP_PROTOCOL_ICMPv4 = 1
$NET_FW_IP_PROTOCOL_ICMPv6 = 58

$NET_FW_RULE_DIR_IN = 1
$NET_FW_RULE_DIR_OUT = 2

$NET_FW_ACTION_BLOCK = 0
$NET_FW_ACTION_ALLOW = 1

(Source: http://www.ohmancorp.com/files/RefWin-AdvFirewall-JCopyFWRules.txt)

like image 176
Tereza Tomcova Avatar answered Nov 11 '22 11:11

Tereza Tomcova

There are two values that the COM object for firewall management. 0 represents domain networks and 1 represents standard networks. There doesn't seem (in this API) to be a differentiation between this public and private profiles.

You can replace the last section of

$fwMgr = New-Object -ComObject HNetCfg.FwMgr
$profile = $fwMgr.LocalPolicy.CurrentProfile
$profile.GloballyOpenPorts.Add($port)

with 

$Profiles = @{
    NET_FW_PROFILE_DOMAIN = 0
    NET_FW_PROFILE_STANDARD = 1
}

$fwMgr = New-Object -ComObject HNetCfg.FwMgr

$profile.GloballyOpenPorts.Add($port)
foreach ($ProfileKey in $Profiles.Keys)
{
    $Profile = $fwMgr.LocalPolicy.GetProfileByType($profiles[$ProfileKey])
    $Profile.GloballyOpenPorts.Add($Port)
}
like image 44
Steven Murawski Avatar answered Nov 11 '22 09:11

Steven Murawski
Sign in to Comment

Related questions

Powershell, ie9 and getElementById
Change 'standard error' to 'standard output'
How do I get the latest Mercurial tag from within Powershell
Running a PS1 script using a batch file (.bat)
Remotely zipping files with PowerShell start-process and invoke-command
Powershell thread handling problem
Update Host Header in IIS with Powershell
How to obtain DefragAnalysis using C#
SendMessage is causing script to hang
PowerShell: Set-Content having issues with "file already in use"
Powershell Bulk Find ActiveDirectory Objects
casting column from csv as date powershell
Using the replace operator on a string that has quotes powershell
format-table and properties that are arrays
Make PowerShell script run cmdlets in global scope
Using C# ExpandoObjects (Dynamic) in PowerShell without underlying Dictionary structure
cd in PowerShell to, cd plus ls
Escaping arguments when passing %* from batch script as $args to powershell script
Syntax not supported by this runspace in Powershell and C#
powershell:how to catch the error cause by invoke-sqlcmd?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!