locked
Advanced Firewall IP exceptions Windows Server 2008/2012 RRS feed

  • Question

  • Is there a way to add exceptions to a firewall rule such as blocking all Non "US" ip ranges. (See Below) Exceptions for specific addresses instead of removing the entire range from the list?

    netsh advfirewall firewall add rule name="Block non_US IPs" dir=in action=block remoteip=1.0.0.0/8,2.0.0.0/8,5.0.0.0/8,14.0.0.0/8,25.0.0.0/8,27.0.0.0/8,31.0.0.0/ etc

    Thanks


    Thursday, January 24, 2013 6:24 PM

Answers

  • Hi daytimeson23,


    Based on my research, if we know the exact IP address or IP range, we can use Windows Firewall to block the single IP address or range.


    Reference:

    Add or Edit Firewall Rule


    Hope this helps.




    Jeremy Wu
    TechNet Community Support


    • Edited by Jeremy_Wu Monday, January 28, 2013 10:05 AM
    • Proposed as answer by Jeremy_Wu Wednesday, January 30, 2013 6:25 AM
    • Marked as answer by Jeremy_Wu Thursday, January 31, 2013 6:13 PM
    Monday, January 28, 2013 9:55 AM