Daar ama ka dami Firewall Windows ka amar degdeg ah

Waxaa laga yaabaa inuu yimaado waqti aad u baahan tahay inaad qorto qoraal ama aad meel fog ku xirto PC oo aad maamusho amar si aad awood ugu yeelato ama u gabto dab- damiska Windows . Inta badan agagaaraha IT-ga, adeegsiga Siyaasadda Kooxda(Group Policy) ayaa ah habka ugu fudud ee lagu habeyn karo Windows Firewall kombayutarada(Windows Firewall) macmiilka.

Sidoo kale waa habka ugu fudud ee lagu dari karo ka reebanaanshaha dekedaha adeegyada sida HTTP , wadaaga faylka, codsiyada software, iyo in ka badan. Si kastaba ha ahaatee, waxa kale oo wanaagsan in la ogaado sida loo habeeyo Firewall-ka Windows(Windows Firewall) -ka laga bilaabo amarka isla markiiba haddii aad haysato kombuyuutar iyo adeegayaal aan ku jirin Hagaha Active(Active Directory) .

Maamul Windows Firewall ka amar degdeg ah(Command Prompt)

Marka hore, si aad u aragto in Windows Firewall uu ku shaqaynayo server ama kumbuyuutar, ku qor amarkan isla markiiba:

netsh advfirewall show allprofiles

Hubi(Make) inaad furto amarka maamulaha (guji Start , ku qor CMD ka dibna midig-guji Command Prompt oo dooro Run as Administrator ). Waa inaad heshaa wax la mid ah waxa hoos ku qoran:

Sida caadiga ah, waa inaad halkan ku aragto saddex liis oo kala duwan: Dejinta profile domain , goobaha profile gaarka ah iyo goobaha astaanta guud. Saddexdani waxay u dhigmaan saddexda gobol ee aad ku dhejin karto isku xirka shabakad kasta ee kombiyuutarkaaga. Haddii aad ku xiran tahay shabakadda guriga oo aad dooratay ikhtiyaarka  Shabakadda Guriga , goobaha astaanta (Home Network)gaarka(Private) ah ayaa lagu dabaqi doonaa.

Dawladdu waxay ka(State) dhigan tahay haddii dab-damiska la shido ama la damiyo. Siyaasadda Firewall-(Firewall Policy) ku waxay kuu sheegaysaa siyaasadaha soo gelaya iyo kuwa ka baxaya ee lagu dabaqayo profile kasta.

Si aad u damiso firewallka profile gaar ah, waxaad isticmaali lahayd amarka soo socda:

netsh advfirewall set privateprofile state off

Ikhtiyaarada kale waa profile hadda(currentprofile) , profile(publicprofile) , profile(domainprofile) , iyo dhammaanprofile(allprofiles) . Markaa haddii aad rabtid in aad gabi ahaanba joojiso firewall-ka, waxa aad isticmaali lahayd allprofiles halkii aad ka isticmaali lahayd profile-ka gaarka ah. Si aad mar labaad awood ugu yeelato, xidho(on) dhamaadka halkii aad damin(off) lahayd .

Fure Dekadda(Port) gudaha Firewall adiga oo isticmaalaya Line Command(Command Line)

Hadda maxaa dhacaya haddii aad rabto inaad furto deked ku taal firewall-ka adoo isticmaalaya khadka taliska? Taasina waa sahlan tahay!

Aynu sheegno inaad rabto inaad furto dekedda 3389, taas oo loogu talagalay desktop-ka fog ee Windows . Waxaad si fudud u maamuli lahayd amarkan:

netsh advfirewall firewall add rule name="Open Remote Desktop" protocol=TCP dir=in localport=3389 action=allow

Amarka aad buu u dheer yahay, laakiin waa sahlan tahay in la burburiyo. Waxaad ku darsataa qaanuun, sii magac, dooro borotokoolka ( TCP ama UDP ), dooro jihada ( Gudaha ama dibadda(Out) ), sii lambarka dekedda oo dooro ficilka ( Oggolow(Allow) ama Diid(Deny) ).

Haddii aad maamuli lahayd amarkan, ka dib u bax abka la oggol yahay ee Windows Firewall , waxaad arki doontaa in shayga Desktop-ka fog(Remote Desktop) hadda la hubiyay:

Haddii aad u baahan tahay inaad furto dekedo kala duwan, kaliya isticmaal xariijimo fudud. Tusaale ahaan, halkan waxaan furayaa dekedaha 600o ilaa 7000 ee UDP taraafikada dibadda:

netsh advfirewall firewall add rule name="UDP ports" protocol=UDP dir=out localport=6000-7000 action=allow

Waxaa jira amarro badan oo horumarsan oo aad isticmaali karto si aad u maamusho dhammaan dhinacyada Windows Firewall , markaa iska hubi inaad isticmaasho /?jilayaasha dhamaadka amar kasta si aad u aragto dhammaan xulashooyinka iyo tusaalooyinka.



About the author

Waxaan ahay injineer software ah oo leh in ka badan 10 sano oo waayo-aragnimo ah naqshadaynta, dhisida, iyo ilaalinta codsiyada ku salaysan Windows. Waxaan sidoo kale ahay khabiir aad u yaqaan habaynta erayada, xaashida faafinta, iyo bandhigyada. Waxaan qori karaa sharraxaad cad oo kooban oo kood ah, waxaan u sharixi karaa fikrado kakan horumariyeyaasha cusub, oo aan xalliyo arrimaha duulista macaamiisha.



Related posts